-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2015.0544
                                AppleTV 7.1
                               10 March 2015

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:          Apple TV
Publisher:        Apple
Operating System: Apple iOS
Impact/Access:    Access Privileged Data          -- Remote/Unauthenticated
                  Execute Arbitrary Code/Commands -- Existing Account      
                  Create Arbitrary Files          -- Existing Account      
                  Provide Misleading Information  -- Remote/Unauthenticated
Resolution:       Patch/Upgrade
CVE Names:        CVE-2015-1067 CVE-2015-1062 CVE-2015-1061

Reference:        ESB-2015.0540

- --------------------------BEGIN INCLUDED TEXT--------------------

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

APPLE-SA-2015-03-09-2 AppleTV 7.1

AppleTV 7.1 is now available and addresses the following:

Apple TV
Available for:  Apple TV 3rd generation and later
Impact:  An attacker with a privileged network position may intercept
SSL/TLS connections
Description:  Secure Transport accepted short ephemeral RSA keys,
usually used only in export-strength RSA cipher suites, on
connections using full-strength RSA cipher suites. This issue, also
known as FREAK, only affected connections to servers which support
export-strength RSA cipher suites, and was addressed by removing
support for ephemeral RSA keys.
CVE-ID
CVE-2015-1067 : Benjamin Beurdouche, Karthikeyan Bhargavan, Antoine
Delignat-Lavaud, Alfredo Pironti, and Jean Karim Zinzindohoue of
Prosecco at Inria Paris

Apple TV
Available for:  Apple TV 3rd generation and later
Impact:  A malicious application may be able to execute arbitrary
code with system privileges
Description:  A type confusion issue existed in IOSurface's handling
of serialized objects. The issue was addressed through additional
type checking.
CVE-ID
CVE-2015-1061 : Ian Beer of Google Project Zero

Apple TV
Available for:  Apple TV 3rd generation and later
Impact:  An malicious application may be able to create folders in
trusted locations in the file system
Description:  An issue existed in the developer disk mounting logic
which resulted in invalid disk image folders not being deleted. This
was addressed through improved error handling.
CVE-ID
CVE-2015-1062 : TaiG Jailbreak Team


Installation note:

Apple TV will periodically check for software updates. Alternatively,
you may manually check for software updates by selecting
"Settings -> General -> Update Software".

To check the current version of software, select
"Settings -> General -> About".

Information will also be posted to the Apple Security Updates
web site: https://support.apple.com/kb/HT1222

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - http://gpgtools.org
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=gaCp
- -----END PGP SIGNATURE-----

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        http://www.auscert.org.au/render.html?cid=1980

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=b7zz
-----END PGP SIGNATURE-----