This article originally appeared in TidBITS on 2013-07-02 at 9:48 p.m.
The permanent URL for this article is: http://tidbits.com/article/13889
Include images: Off

Security Update 2013-003 for Mountain Lion, Lion, and Snow Leopard

by Agen G. N. Schmitz

Apple has released Security Update 2013-003 for OS X 10.8 Mountain Lion [1] (20.4 MB) as well as for 10.7 Lion and 10.6 Snow Leopard, both of which receive two versions: Lion [2] (61 MB) and Lion Server [3] (111.3 MB), plus Snow Leopard [4] (349.5 MB) and Snow Leopard Server [5] (424.5 MB). All versions of this security update close vulnerabilities with buffer overflows within QuickTime that could lead to “unexpected application termination or arbitrary code execution.” In particular, the updates deal with buffer overflows in Sorenson and H.264 encoded movie files, plus the handling of “mvhd” movie header atoms. (Free)

[1]: http://support.apple.com/kb/DL1667
[2]: http://support.apple.com/kb/DL1670
[3]: http://support.apple.com/kb/DL1671
[4]: http://support.apple.com/kb/DL1668
[5]: http://support.apple.com/kb/DL1669