Published: 2009-05-17T06:28+00:00    Last Updated: 2009-05-17T06:28+00:00

JVNTR-2009-12
Apple Updates for Multiple Vulnerabilities (TA09-133A)

Overview

Apple has released multiple Security Updates, 2009-002 / Mac OS X version 10.5.7 and Safari 3.2.3, to correct multiple vulnerabilities affecting Apple Mac OS X , Mac OS X Server, and the Safari web browser. Attackers could exploit these vulnerabilities to execute arbitrary code, gain access to sensitive information, or cause a denial of service.

Event Information


Date (UTC)Description
2009-05-13 19:23 US-CERT
TA09-133A: Apple Updates for Multiple Vulnerabilities
Via US-CERT Mailing List
2009-05-13 13:12 US-CERT
Apple Releases Security Update 2009-002, Mac OS X v10.5.7 and Safari 3.2.3
US-CERT Current Activity
Apple has released Security Update 2009-002 and Mac OS X v10.5.7 to address multiple vulnerabilities in a number of applications. These vulnerabilities may allow an attacker to execute arbitrary code, obtain sensitive information, cause a denial-of-service condition, leverage additional attacks, or obtain elevated privileges.
2009-05-12 23:07 SANS Internet Storm Center
Apple patches and updates
Apple released patches today: Apple OS X 10.5.7 update / Security update 2009-002, Safari 4 beta, Safari 3.2.3
2009-05-12 Apple
Apple knowledgebase article HT3549: About the security content of Security Update 2009-002 / Mac OS X v10.5.7
This document describes the security content of Security Update 2009-002 / Mac OS X v10.5.7, which can be downloaded and installed via Software Update preferences, or from Apple Downloads.
2008-03-19 iDefense
Apple Mac OS X xnu Kernel workqueue_additem/workqueue_removeitem Index Validation Vulnerability
Index validation vulnerability (CVE-2008-1517)
Vulnerability Reported
The Mac OS X xnu (Mach) kernel implements workqueues. This allows the kernel to schedule events to take place in a task. An input validation error exists within this implementation, which can lead to execution of arbitrary code in the kernel.


Other Information

CVE CVE-2008-1517
CVE-2004-1184
CVE-2004-1185
CVE-2004-1186
CVE-2006-0747
CVE-2007-2754
CVE-2008-0456
CVE-2008-1382
CVE-2008-1517
CVE-2008-2371
CVE-2008-2383
CVE-2008-2665
CVE-2008-2666
CVE-2008-2829
CVE-2008-2939
CVE-2008-3443
CVE-2008-3529
CVE-2008-3530
CVE-2008-3651
CVE-2008-3652
CVE-2008-3655
CVE-2008-3656
CVE-2008-3657
CVE-2008-3658
CVE-2008-3659
CVE-2008-3660
CVE-2008-3790
CVE-2008-3863
CVE-2008-4309
CVE-2008-5077
CVE-2008-5557
CVE-2009-0010
CVE-2009-0021
CVE-2009-0025
CVE-2009-0040
CVE-2009-0114
CVE-2009-0144
CVE-2009-0145
CVE-2009-0146
CVE-2009-0147
CVE-2009-0148
CVE-2009-0149
CVE-2009-0150
CVE-2009-0152
CVE-2009-0153
CVE-2009-0154
CVE-2009-0155
CVE-2009-0156
CVE-2009-0157
CVE-2009-0158
CVE-2009-0159
CVE-2009-0160
CVE-2009-0161
CVE-2009-0162
CVE-2009-0164
CVE-2009-0165
CVE-2009-0519
CVE-2009-0520
CVE-2009-0844
CVE-2009-0845
CVE-2009-0846
CVE-2009-0847
CVE-2009-0942
CVE-2009-0943
CVE-2009-0944
CVE-2009-0945
CVE-2009-0946