Apple fixes two Darwin Streamer flaws

By
Follow google news

Apple on Thursday released fixes for two critical vulnerabilities in its open-source server technology designed for developers who need to stream media across platforms.

Apple fixes two Darwin Streamer flaws
The Cupertino, Calif.-based computing giant said the flaws, affecting Darwin Streamer Server 5.5.4 and all prior versions, may allow remote attackers to cause a system crash or execute arbitrary code.

Apple issued the patches as part of its 12th security update of the year. By this time last year, Apple released seven fixes, but the company delivered two patches on 11 May, 2006.

The two bugs in the Darwin Streamer Server, Apple’s open-source version of the QuickTime Streaming Server, are caused by stack and heap overflow errors that occur when processing either RTSP (real-time streaming protocol) or SETUP requests, according to a FrSIRT advisory today.

An anonymous researcher reported the flaws to VeriSign iDefense Labs, according to Apple.

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Tags:
appledarwinfixesflawssecuritytwo

Sponsored Whitepapers

Innovate anywhere with HPE and Azure Local
Innovate anywhere with HPE and Azure Local
Cloud Covered Report: New Zealand
Cloud Covered Report: New Zealand
How healthcare organisations can get more value from cloud
How healthcare organisations can get more value from cloud
The governed agent: A new framework for responsible AI at scale
The governed agent: A new framework for responsible AI at scale
Securing Machinery of Government changes
Securing Machinery of Government changes

Events

Most Read Articles

ASD to retire Essential Eight cyber security framework within next two years

ASD to retire Essential Eight cyber security framework within next two years
Fake IT worker threat spreads outside tech sector in Australia

Fake IT worker threat spreads outside tech sector in Australia
NAB builds integrated ops hub for threat intelligence

NAB builds integrated ops hub for threat intelligence
NAB's SecOps rethink focuses on data expert and dev hires

NAB's SecOps rethink focuses on data expert and dev hires
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?