MAAS History
Archives

Entries by drStrangeP0rk (171)

Wednesday
Dec222010

Intego Releases an Update to VirusBarrier X6

Intego has released an update to VirusBarrier X6 to 10.6.10. The update addresses various compatibility and stability issues, we hope that it is far more stable with 64 bit kernel extensions enabled and when switching user settings. The update is available via NetUpdate.

Thursday
Dec162010

Time Capsule and AirPort Base Station(802.11n) Firmware 7.5.2

Apple has released an update of firmware for the Airport Base Station 802.11N and Time Capsule. This includes a fix for an interger overflow, a rate limiting failure in IPv6 which can cause a DoS, NAT disclose of private FTP server spoof, DHCP attack to devices in Bridge Mode and DOS of the Racoon deamon. 

Please read the following information before doing an update.

 

  • Installation note for Firmware version 7.5.2 Firmware version 7.5.2 is installed into Time Capsule or AirPort Base Station with 802.11n via AirPort Utility, provided with the device.
  •  It is recommended that AirPort Utility 5.5.2 be installed before upgrading to Firmware version 7.5.2

 

Tuesday
Dec142010

Google Chrome 8.0.552.224 Released

An update has been release of Chrome Browser for all platforms to the stable channel. Users should apply this update, it addresses several bug and vulnerabilities. 

  • [64-bit Linux only] [56449] High Bad validation for message deserialization on 64-bit builds. Credit to Lei Zhang of the Chromium development community.
  • [60761] Medium Bad extension can cause browser crash in tab handling. Credit to kuzzcc.
  • [63529] Low Browser crash with NULL pointer in web worker handling. Credit to Nathan Weizenbaum of Google.
  • [$1000] [63866] Medium Out-of-bounds read in CSS parsing. Credit to Chris Rohlf.
  • [$1000] [64959] High Stale pointers in cursor handling. Credit to Sławomir Błażek and Sergey Glazunov.
Friday
Dec102010

Firefox 3.6.13 Released

Modzilla has released an update to Firefox to address various security and stability issues. 

Fixed in Firefox 3.6.13

MFSA 2010-84 XSS hazard in multiple character encodings
MFSA 2010-83 Location bar SSL spoofing using network error page
MFSA 2010-82 Incomplete fix for CVE-2010-0179
MFSA 2010-81 Integer overflow vulnerability in NewIdArray
MFSA 2010-80 Use-after-free error with nsDOMAttribute MutationObserver
MFSA 2010-79 Java security bypass from LiveConnect loaded via data: URL meta refresh
MFSA 2010-78 Add support for OTS font sanitizer
MFSA 2010-77 Crash and remote code execution using HTML tags inside a XUL tree
MFSA 2010-76 Chrome privilege escalation with window.open and <isindex> element
MFSA 2010-75 Buffer overflow while line breaking after document.write with long string
MFSA 2010-74 Miscellaneous memory safety hazards (rv:1.9.2.13/ 1.9.1.16)

Wednesday
Dec082010

APPLE-SA-2010-12-07-1 QuickTime 7.6.9

Apple has released an update to QuickTime to address several vulnerabilities related to Leopard 10.5.x. This update is to address the ability of an attacker to craft a malicious QuickTime file to gain access to a user system. The update was part of a larger package for Mac OSX users for OSX 10.6.x.