The Active Network
ActiveMac Anonymous | Create a User | Reviews | News | Forums | Advertise  
 

  *  

  Apple Security Announcement 2003-09-22 Mac OS X 10.2.8
Time: 09:53 EST/14:53 GMT | News Source: ActiveMac | Posted By: Byron Hinson

The new Mac OS X 10.2.8 update contains fixes for the following vulnerabilities:

OpenSSH: Mac OS X 10.2.8 contains the patches to address CVE CAN-2003-0693, CAN-2003-0695, and CAN-2003-0682. On Mac OS X versions prior to 10.2.8, the vulnerability is limited to a denial of service from the possibility of causing sshd to crash. Each login session has its own sshd, so established connections are preserved up to the point where system resources are exhausted by an attack.

To deliver the update in a rapid and reliable manner, only the patches for CVE IDs listed above were applied, and not the entire set of patches for OpenSSH 3.7.1. Thus, the OpenSSH version in Mac OS X 10.2.8, as obtained via the "ssh -V" command, is: OpenSSH_3.4p1+CAN-2003-0693, SSH protocols 1.5/2.0, OpenSSL 0x0090609f

Sendmail: Addresses CVE CAN-2003-0694 and CAN-2003-0681 to fix a buffer overflow in address parsing, as well as a potential buffer overflow in ruleset parsing. fb_realpath(): Fixes CAN-2003-0466 which is an off-by-one error in the fb_realpath() function that may allow attackers to execute arbitrary code. arplookup(): Fixes CAN-2003-0804. The arplookup() function caches ARP requests for routes on a local link. On a local subnet only, it is possible for an attacker to send a sufficient number of spoofed ARP requests which will exhaust kernel memory, leading to a denial of service.

Write Comment
Return to News

  Displaying 351 through 351 of 351
Prev | First
  The time now is 4:55:58 AM ET.
Any comment problems? E-mail us
#351 By 4240821 (136.0.102.21) at 12/11/2024 11:18:41 PM
https://blogool.com/article/iambabby-patreon-leaks-aiden-empire
https://blogool.com/article/mjvidz-patreon-leaked-lollipop-couple
https://blogool.com/article/sexywoman167-patreon-leaked-rattlesnakepov
https://blogool.com/article/yua-mikami-manyvids-leaks-chocomelon
https://blogool.com/article/alita2k-manyvids-leaks-bbwnaomi96
https://blogool.com/article/remmiemay-clips4sale-leak-fionaxjames
https://blogool.com/article/lunitabonita-onlyfans-leaked-alexarose
https://blogool.com/article/angelrose14-manyvids-leaks-koco-chanel
https://blogool.com/article/oliviataylorxo-manyvids-leak-fondnesschannel
https://blogool.com/article/cheeksmcghee-manyvids-leak-sophia-rock

Write Comment
Return to News
  Displaying 351 through 351 of 351
Prev | First
  The time now is 4:55:58 AM ET.
Any comment problems? E-mail us
User name and password:

 

  *  
  *   *