Home / mailings

PDF

APPLE-SA-2013-09-17-1 OS X Server v2.2.2

Posted on 17 September 2013
Apple Security-announce

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

APPLE-SA-2013-09-17-1 OS X Server v2.2.2

OS X Server v2.2.2 is now available and addresses the following:

ClamAV
Available for: OS X Mountain Lion v10.8 or later
Impact: Multiple vulnerabilities in ClamAV
Description: Multiple vulnerabilities existed in ClamAV, the most
serious of which may lead to arbitrary code execution. This update
addresses the issues by updating ClamAV to version 0.97.8.
CVE-ID
CVE-2013-2020
CVE-2013-2021

PostgreSQL
Available for: OS X Mountain Lion v10.8 or later
Impact: Multiple vulnerabilities in PostgreSQL
Description: Multiple vulnerabilities existed in PostgreSQL, the
most serious of which may lead to data corruption or privilege
escalation. This update addresses the issues by updating PostgreSQL
to version 9.2.4.
CVE-ID
CVE-2013-1899
CVE-2013-1900
CVE-2013-1901

Wiki Server
Available for: OS X Mountain Lion v10.8 or later
Impact: Multiple vulnerabilities in Wiki Server
Description: Multiple cross-site scripting issues existed in Wiki
Server. These issues were addressed by improved encoding of HTML
output.
CVE-ID
CVE-2013-1034 : David Hoyt of Hoyt LLC Research


OS X Server v2.2.2 may be obtained from Mac App Store.

Information will also be posted to the Apple Security Updates
web site: http://support.apple.com/kb/HT1222

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

 

TOP