Apple addresses security concerns with QuickTime 7.6.9 update for Mac OS X 10.5.x operating systems

Posted by:
Date: Wednesday, December 8th, 2010, 05:14
Category: News, security, Software

quicktimelogo.jpg

Per the cool cats over at CNET, Apple has updated its Quicktime software, now at version 7.6.9, to fix vulnerabilities where a maliciously designed file could execute arbitrary code or lead to the application terminating.

As Apple describes in its knowledge base article:
“Description: A heap buffer overflow exists in QuickTime’s handling of JP2 images. Viewing a maliciously crafted JP2 image may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved bounds checking. For Mac OS X v10.6 systems, this issue is addressed in Mac OS X v10.6.5. Credit to Nils of MWR InfoSecurity, and Will Dormann of the CERT/CC, for reporting this issue.”

Also included in this security update are fixes to maliciously crafted avi file types, other movie file types, FlashPix image files, GIF image files, or PICT image files, as well as a possibility that local users may have access to sensitive information on certain Windows machines.
The update is for Mac users running Mac OS X 10.5.8 or Server 10.5.8. For more information, visit the entire security update article.

As usual, the update can be located, snagged and installed via Mac OS X’s Software Update feature.

If you’ve tried the update and noticed any major changes, let us know in the comments.

Adobe releases Lightroom 3.3 update

Posted by:
Date: Wednesday, December 8th, 2010, 05:18
Category: News, Software

adobeicon

Early Tuesday, software giant released version 3.3 of its Lightroom (available on the company’s update page) photo editing utility. The Lightroom 3.3 updated added the following fixes and changes:

- Additional camera support for several new camera models including the Canon PowerShot 95, Nikon D7000 and Olympus E-5.

- Corrections for issues introduced in Lightroom 3.0.

Adobe Lightroom 3.3 retails for US$299 and requires Mac OS X 10.5.6 or later to install and run.