MacOS Server 5.2 is available for macOS Sierra 10.12 with patches for two issues, one in apache and another in the ServerDocs Server component.
In addition to macOS Sierra 10.12, which resolves vulnerabilities in OS X El Capitan v10.11.6, Apple also released macOS Server 5.2 and Safari 10, to address additional security bugs, along with iCloud for Windows 6.0, which is available for Windows 7 and later with a patch for a WebKit flaw ( CVE-2016-4762) that could lead to arbitrary code execution when processing maliciously crafted web content. Vulnerabilities that could result in denial of service or leaked user information were also addressed in this release. Some of these security bugs could result in the execution of code with kernel or system privileges. Most of these issues were reported by external researchers, but some were found by Apple themselves.Īrbitrary code execution was the vulnerability with the largest number of occurrences in Apple’s security advisory. Other affected components include Apple’s implementation of Apache, AppleEFIRuntime, Application Firewall, Audio, Bluetooth, CFNetwork, CommonCrypto, CoreCrypto, curl, FontParser, Intel Graphics Driver, IOAcceleratorFamily, Kernel, libarchive, libxml2, Terminal, and WindowServer. Apple resolved these vulnerabilities by updating PHP to version 5.6.24.
The most significant of these issues could lead to unexpected application termination or arbitrary code execution. Plagued by 16 flaws, the “apache_mod_php” module responsible for interpreting PHP code was the most affected component in the platform. Apple on Tuesday released the final version of macOS Sierra 10.12 as a free update and announced that no less than 65 security vulnerabilities were addressed in this operating system version.
0 kommentar(er)
