[Macpartners] APPLE-SA-2003-06-09 Security Update 2003-06-09
Albert Willis
awillis at MIT.EDU
Tue Jun 10 11:37:25 EDT 2003
It's the latest security update from Apple; use Software Update to get it.
-- Al
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
APPLE-SA-2003-06-09 Security Update 2003-06-09
Security Update 2003-06-09 is now available. It contains fixes for the
following potential security issues:
* AFP: CAN-2003-0379. When Apple File Service (AFP Server) in Mac OS
X Server is serving files on a UFS or re-shared NFS volume, there is a
potential vulnerability that can allow a remote user to overwrite
arbitrary files.
* Directory Services: CAN-2003-0378. When logging in via Kerberos on
an LDAPv3 server, the account password may be sent in cleartext format
when Login Window falls back to trying a simple bind on the server.
Security Update 2003-06-09 may be obtained from:
* Software Update pane in System Preferences
- OR -
* Apple's Software Downloads web site:
http://www.info.apple.com/kbnum/n120223
The download file is named: "SecurityUpd2003-06-09.dmg"
Its SHA-1 digest is: cc533ba3a6ef1825557e288df1c5abfd7d83c82b
Information is also posted to the Apple Support web site:
http://docs.info.apple.com/article.html?artnum=61798
This message is signed with Apple's Product Security PGP key, and
details are available at:
http://www.apple.com/support/security/security_pgp.html
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2
iQEVAwUBPuTZsneI0z6bzFr0AQIxYQgAuBy6d6Ihu8f6GHhi2m683bEVnYTgc/JW
BukaGPvCjs6ImTV/iCqBsl1NxICCR351y448nHOCfLgOB54OZpadgBuH5Ry+nL3Q
7ZeTVA5xL5PA7cB+WBNvBQWmlG8+jRTNuELnKFDnEaLAkOFU9PpcKPg7ewtQviU5
rheBhljSMiPVMZFiNh/HBo/bjMN63/ZyWF+C50kin+yzLNFu1d5xHqSHMS9x+39s
7nQyNt+XHE1aY0TsFXFjalb2Up40plGcAVPdHFEyGcsz9qJ+9SNuZlirl+yrxlLL
aH5lfrwTMCx8Mar/eTq45NpbKfiK+HYNrH9j+DNKg/y2GOKlOiADMg==
=qf6G
-----END PGP SIGNATURE-----
More information about the Macpartners
mailing list