Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2013.1803 OS X Mavericks v10.9.1 17 December 2013 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: OS X Mavericks Publisher: Apple Operating System: OS X Impact/Access: Execute Arbitrary Code/Commands -- Remote with User Interaction Denial of Service -- Remote with User Interaction Access Confidential Data -- Remote with User Interaction Resolution: Patch/Upgrade CVE Names: CVE-2013-5228 CVE-2013-5227 CVE-2013-5225 CVE-2013-5199 CVE-2013-5198 CVE-2013-5197 CVE-2013-5196 CVE-2013-5195 CVE-2013-2909 Reference: ASB-2013.0110 ESB-2013.1802 ESB-2013.1530 - --------------------------BEGIN INCLUDED TEXT-------------------- - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-12-16-2 OS X Mavericks v10.9.1 OS X Mavericks v10.9.1 is now available and includes the content of Safari 7.0.1. For further details see "About the security content of Safari 6.1.1 and Safari 7.0.1" at http://support.apple.com/kb/HT6082 OS X Mavericks v10.9.1 may be obtained from the Mac App Store. Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT1222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ - -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.22 (Darwin) Comment: GPGTools - http://gpgtools.org iQIcBAEBAgAGBQJSr0zeAAoJEPefwLHPlZEwhRYP/2WdgVczVR1y0+If9IzC8Y/h XiYfycgYDk+siB87CxPAgVu/Mn/dfJ6F5FuLv2etszlVcP8ALISC+11lP+vGNPt2 suFTa+35n9n/ysiKVCfZI1xUeL0DIeA261W95US/krRt1x+f9PIlWtGjXx7T17t/ ZNX9xoH7BMDpWNeVP1GoCK8rqZYDyHVfcuqGapJ2tXra7b4pQ+giQBduQMYevsXw t1h/geIAb4tEYihQqtlKyrjEcx9e6e1XjRYtZlEYdTsVlsUQRnQVo1KZQ2/Rd7V4 sOkoxSHsqCI/2lwOl5jTspvojylgb5ISK1uoZLgvBqxoQpOartslqQafvC4hKN7h Jeb3by3l+hgwkFk5pbZeavGe7h/mYE0dvjHa47G6U02H+Y0wXscnKoqMZNt1mIJs crrhNCTXPfadLJuZwbmPnKY7TCou9EzMMplHjO3DF84HGOSBWeiyMEqRNbNT4Bfq W1ZxBnGbVRhtT5wHIM7I02sVEb6VD8Pch/nLewJTqIoyCnpyhnE9+7JLG7OXK5V4 WtejJScKoBsPqQJdygezOmd89OFcXAr2/k7i+/i8al1ZASBUBeie8pR1PuxCAcvz /M0859DhPiuwHwrqrHOypFsPzXQtqULWkyvoPeJHJPgf4eqvde0sry56Ap6G9FVl SPuMS2AyPBQshpYE+o/C =SGGT - -----END PGP SIGNATURE----- - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: http://www.auscert.org.au/render.html?cid=1980 =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBUq+mhhLndAQH1ShLAQJWWA//bItuuYDP6aHtBvBSV+VJr1TssiJ9LdF9 iE3OjPGhaA2ytol3GNzmUC0XVMQRqQodriCWwvl+WIqZlPJjeKGTSyPHar4qInyj F4CyszEyBZ9mt3Ghr9yVJ8uKL8I/q1v7jzmHxDFMcAIscsozRdBtwtzfYmZmOiZH 4GiEQYPODD9+PglicIN6xiIjZ9OvZxsfaQrKELOy39hQAK4kVtyBYK+HzdXoc0or 2u+6wxg/4kP8+Sdgdpiu67oXo27qf4JIYHhX5DK+Vrrms1WzWuhMnQmnh5q/vQW1 SPZfjJswOFydpIwYM7xmV0T/Z/OdZORA+gzDSwQFulB1cQdkseLOPHDkhGKWTPf3 VV3ggJkHgt/7qvDad3hokgzrsSUNxLdqA8zQSAPeokBPAoUzJ8ias1rt4n+tiyie VK+1EQ1Dltebzyo4rqMnpTKRLTRcIKDVIkGBe1I7m8uQPxoWlQe7tJPgJ3Ns2BcH x5+aBHz8MMfvfKcqGwdHT+6U2A7am4PdP8667tnwimTmaK+q4PAgL15cbpVUpTif Uau3fo81KSn3kpHqAKQ4gWxYF9m76DAc8lMJFALDZh3hgZi+GK6twjnRpX5W59oQ /mHLy4zuU4CoJaPiNNtpONIWrzlrpqGLcjGSARJrGe7zL/BZG9zY4z9jbybJIqhn A1JMPL8mjzo= =RaYU -----END PGP SIGNATURE-----