On TV.com: 2009's Most PIRATED TV Show
BNET Business Network:
BNET
TechRepublic
ZDNet

November 13th, 2008

Apple fixes 12 Safari security flaws

Posted by Ryan Naraine @ 2:22 pm

Categories: Apple, Arbitrary Code Execution, Browsers, Data theft, Denial of Service (DoS), Open source, Patch Watch, Responsible disclosure, Uncategorized, Vulnerability research, Windows Vista

Tags: Apple Safari, Apple Inc., Arbitrary Code Execution, Buffer-overflow, TIFF, Application Termination, Security, Viruses And Worms, Ryan Naraine

Apple plugs critical Safari holesApple has release Safari 3.2 to fix at least a dozen security flaws, some very serious.

The update, available for Windows XP, Windows Vista and Mac OS X (Tiger and Leopard), address vulnerabilities that could be exploited to take full control of a compromised machine.

Some of the more serious flaws:

CVE-2008-1767: A heap buffer overflow issue exists in the libxslt library. Viewing a maliciously crafted HTML page may lead to an unexpected application termination or arbitrary code execution. Further information on the patch applied is available via
http://xmlsoft.org/XSLT/.

CVE-2008-3623: A heap buffer overflow exists in CoreGraphics’ handling of color spaces. Viewing a maliciously crafted image may lead to an unexpected application termination or arbitrary code execution.

CVE-2008-2327: Multiple uninitialized memory access issues exist in libTIFF’s handling of LZW-encoded TIFF images. Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution.

CVE-2008-2332: A memory corruption issue exits in ImageIO’s handling of TIFF images. Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution.

CVE-2008-3642: A buffer overflow exists in the handling of images with an embedded ICC profile. Opening a maliciously crafted image with an embedded ICC profile may lead to an unexpected application termination or arbitrary code execution.

Three of the 12 issues were found and fixed in WebKit, the open-source Web browser engine.

Safari 3.2 should be treated as an “highly critical” update.  End users should apply this patch immediately.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 45 Talkback(s)
you show your ignorance or your zealotry
if you understood the bug-fixing, patch-coding process,
you might have saved yourself some embarrassment: it
makes no sense to release individual patches or fixes if
those issues are inter... (Read the rest)
Posted by: Dave Mount Posted on: 11/18/08 You are currently: a Guest | | Terms of Use
Apple engineers are an odd bunch  NonZealot | 11/13/08
LOL! nt  ye | 11/13/08
NZ  Win3.1 | 11/13/08
It's a PR game  eMJayy | 11/13/08
I think you are partially right but from experience.  xuniL_z | 11/14/08
why?  doh123 | 11/13/08
What on EARTH are you talking about?  NonZealot | 11/13/08
In fact, here is a perfect example  NonZealot | 11/13/08
ditto  richvball44 | 11/13/08
Hmm. Microsoft sat on this one...  msalzberg | 11/13/08
Hmm, you must have missed the talkbacks on that one!  NonZealot | 11/13/08
You truly believe that...  msalzberg | 11/14/08
Poor msalzberg, you were really hoping to win this one  NonZealot | 11/14/08
@NonZealot: The problem with your argument is NTLM is still available.  ye | 11/14/08
@ye...  msalzberg | 11/14/08
GUYS!  de-void | 11/14/08
@de-void: Where do you guys keep coming up with this?  ye | 11/14/08
@msalzberg: Then prove that I'm wrong  NonZealot | 11/14/08
@ye: default is NTLMv2  NonZealot | 11/14/08
@NonZealot: The default used by Windows is irrelevent.  ye | 11/14/08
@ye: I understand the distinction now  NonZealot | 11/14/08
you helped...  doh123 | 11/14/08
You are confusing a fix with a patch  NonZealot | 11/14/08
One more thing: look at Apple's patch schedule  NonZealot | 11/14/08
Manageability  de-void | 11/14/08
Really....  ShadowGIATL | 11/13/08
You'd have to be a complete idiot to think Apple...  ye | 11/14/08
you...  doh123 | 11/14/08
But that's exactly what you're saying:  ye | 11/14/08
Which is exactly what they did....  ariesghost | 11/17/08
perhaps  richvball44 | 11/13/08
So they don't release the fix for the first one right away?  NonZealot | 11/13/08
As the old adage says ...  Laraine Anne Barker | 11/17/08
you show your ignorance or your zealotry  Dave Mount | 11/18/08
RE: Apple fixes 12 Safari security flaws  cypherpunk@... | 11/13/08
Too primitive approach!  no nonsense | 11/16/08
Google Chrome vs Firefox - A Video Review  pcwizkid.tech.talk@... | 11/16/08
Say it is not so!!  Baer | 11/17/08
RE: Apple fixes 12 Safari security flaws  gennx30 | 11/17/08
LOL  rtk | 11/17/08
Facts, please  frabjous | 11/18/08
Reality, please.  rtk | 11/18/08
RE: Apple fixes 12 Safari security flaws  trm1945 | 11/17/08
RE: Apple fixes 12 Safari security flaws  jsully@... | 11/18/08
RE: Apple fixes 12 Safari security flaws  Snarfiorix | 11/18/08

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here