site_archiver@lists.apple.com Delivered-To: security-announce@lists.apple.com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2010-11-22-2 Apple TV 4.1 Apple TV 4.1 is now available and addresses the following: Apple TV CVE-ID: CVE-2010-2805, CVE-2010-2806, CVE-2010-2807, CVE-2010-2808, CVE-2010-3053, CVE-2010-3054 Available for: Apple TV 4.0 Impact: Multiple vulnerabilities in FreeType Description: Multiple vulnerabilities exist in FreeType, the most serious of which may lead to arbitrary code execution when processing a maliciously crafted font. These issues are addressed by updating FreeType to version 2.4.2. Further information is available via the FreeType site at http://www.freetype.org/ Apple TV CVE-ID: CVE-2010-2249, CVE-2010-1205 Available for: Apple TV 4.0 Impact: Multiple vulnerabilities in libpng Description: libpng is updated to version 1.4.3 to address multiple vulnerabilities, the most serious of which may lead to arbitrary code execution. Further information is available via the libpng website at http://www.libpng.org/pub/png/libpng.html Installation note: Apple TV will periodically check for software updates. Alternatively, you may manually check for software updates by selecting "Settings -> General -> Update Software". To check the current version of software, select "Settings -> General -> About". Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT1222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (Darwin) iQEcBAEBAgAGBQJM4vmFAAoJEGnF2JsdZQeeXTcH/iPyUxLsYnLfpDOKK8hKK91w wL1kIVfjarDSInKuauplUMekNxjKHgFWjJXrpPzdK0s0Cc89K0aRO9zDt6uM2j0J AAtwW4lpsTeytFsArhyA9tHcj852R0lyXKsTrTWEPx+Gj015fZTJgG1dMmIRB9x0 S2Yw6hBkwJ7M+3xUfLXvnOyaXdzuUEdR6DlVhxGmD3yMWLfesZ4n2oCncL30FXv6 NOPsSfHkPxAbWFcyVFDDpAJZ+6uIo/F8yBfKvTZ8BpuAK3hzOY+XkqbfmEKRsovT p6tapQwhDfUpX6K4KTRH06hsKfCqSyl4vb2y/l2zX/ZORKyN7gruMngDFxGNSZw= =MGz+ -----END PGP SIGNATURE----- _______________________________________________ Do not post admin requests to the list. They will be ignored. Security-announce mailing list (Security-announce@lists.apple.com) Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/security-announce/site_archiver%40lis... This email sent to site_archiver@lists.apple.com