site_archiver@lists.apple.com Delivered-To: security-announce@lists.apple.com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2006-02-14 Mac OS X v10.4.5 Mac OS X v10.4.5 and Mac OS X Server v10.4.5 are now available and deliver the following security enhancement: Kernel CVE-ID: CVE-2006-0382 Available for: Mac OS X v10.4.5, Mac OS X Server v10.4.5 Impact: A malicious local user can cause a system crash Description: A malicious local user may trigger a system crash by invoking an undocumented system call. This update addresses the issue by removing the system call from the kernel. Credit to David Goldsmith of Matasano for reporting this issue. Mac OS X v10.4.5 may be obtained from the Software Update pane in System Preferences, or Apple's Software Downloads web site: http://www.apple.com/support/downloads/ For Mac OS X v10.4.4 (PowerPC) The download file is named: "MacOSXUpd10.4.5PPC.dmg" Its SHA-1 digest is: c794af16563470fb16610bbaecedb59624a24dee For Mac OS X v10.4.4 (Intel) The download file is named: "MacOSXUpd10.4.5Intel.dmg" Its SHA-1 digest is: 23def8fb52839c008d313c7cd301aa16efbdfd64 For Mac OS X v10.4 through Mac OS X v10.4.3 The download file is named: "MacOSXUpdCombo10.4.5PPC.dmg" Its SHA-1 digest is: 1e1309d0a37aeb8fb42cf92480d2bba2db3372db For Mac OS X Server v10.4.4 The download file is named: "MacOSXSvrBaseUpd10.4.5.dmg" Its SHA-1 digest is: 8922dcf05fa96f034a9be9d47cf150ac628bc707 Information will also be posted to the Apple Product Security web site: http://docs.info.apple.com/article.html?artnum=61798 This message is signed with Apple's Product Security PGP key, and details are available at: http://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.0.5 (Build 5050) iQEVAwUBQ/J+OYHaV5ucd/HdAQJYrAgAr333u5FbohWV4kIAthbaDhEIBtIk6m8i tHi88JyIIq1NdDDw+uSst5Rt+lQ8J93UYYd24Lpy3Opsn8SKTd18w2DDu4yk6v9w VEcDvYa/Hmt4n+12JI/26Audrh6g9X9hkYNdy8vL77CK7k5xD1OSIj9jKE9Esx0t Gy6yQjXDZ1HkWM8uf/DS3o47MLzg0sqyLM9h85ju+/c6mviswUNH7Vk4w7NOzrK+ OpqAhgrLeRmpgY5jQXMoRkCPf5sI/Rl9lp7tgx9sjzSqmW8Yt3aziRj1fGT0Xa8Y kSCOgbTiTKK7ltaq+1yy3B+v8ybZy1wCFf80pfZoDj0ZAIDPbQbn2A== =+WkU -----END PGP SIGNATURE----- _______________________________________________ Do not post admin requests to the list. They will be ignored. Security-announce mailing list (Security-announce@lists.apple.com) Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/security-announce/site_archiver%40lis... This email sent to site_archiver@lists.apple.com