The advisory gives the impression that the vulnerabilities are only in the Windows version of iTunes, but this seems unlikely, especially in as much as many were recently listed as being patched in Safari on OS X. The advisory does list a download file for the OS X version of iTunes 9.2. For the moment, the advisory has yet to be published on Apple's security updates page.
The vast majority of the vulnerabilities are in the WebKit HTML engine, the basis for Safari and other browsers and which is incorporated into iTunes. Many of these and two other vulnerabilities are critical bugs which could result in remote code execution.
iTunes 9.2 also contains new features. Quoting Apple:
- Sync with iPhone 4 to enjoy your favorite music, movies, TV shows, books and more on-the-go
- Sync and read books with iPhone or iPod touch with iOS 4 and iBooks 1.1
- Organize and sync PDF documents as books. Read PDFs with iBooks 1.1 on iPad and any iPhone or iPod touch with iOS 4
- Organize your apps on your iOS 4 home screens into folders using iTunes
- Faster back-ups while syncing an iPhone or iPod touch with iOS 4
- Performance improvements make scrolling much faster
Bahrain
Australian
Malaysian
Chinese
Spanish
Monaco
Turkish
Canadian
British
German
Hungarian
Belgian
Italian
Singapore
Japanese
Korean
Brazilian
Abu Dhabi
No comments:
Post a Comment