Network News

X My Profile
View More Activity

Security Updates for iTunes, QuickTime

Apple has issued updates to fix security issues in its QuickTime media player and iTunes software. Updates are available for both Mac and Windows versions of both programs.

The QuickTime patch brings the program to version 7.6.2, and plugs at least 10 security holes, including two that are specific to the Windows version of QuickTime. The iTunes update, version 8.2, fixes a single yet critical flaw in iTunes that could let a malicious Web site use the program to install software on the user's system.

Apple users can grab the updates from Software Update. Windows users will need to use the bundled Apple Software Update program to fetch these.

By Brian Krebs  |  June 2, 2009; 5:56 PM ET
Categories:  New Patches  | Tags: itunes, quicktime  
Save & Share:  Send E-mail   Facebook   Twitter   Digg   Yahoo Buzz   Del.icio.us   StumbleUpon   Technorati   Google Buzz   Previous: Beladen Loads Hacked Web Sites With Badness
Next: Microsoft's Fix for the Firefox Add-on Snafu

Comments

The QuickTime update seems to have caused my system (Mac OS X Tiger 10.4.11) to become significantly less stable. A crash while playing Solitaire Till Dawn gives a report that indicates the crash was in the QuickTime thread.

Posted by: tegularius | June 2, 2009 10:00 PM | Report abuse

The Apple website states that for Windows users the iTunes 8.2 patch will fix the flaws for XP SP2 and later, but the QuickTime 7.6.2 patch will plug the security holes for XP SP3 only. Does this mean that if you have XP SP2 the QuickTime patch will not work? and that those users will be vulnerable?

Posted by: jxl2 | June 2, 2009 10:27 PM | Report abuse

@Jx12 - I believe the QT patch should work the same on XP SP2 and SP3.

Posted by: BTKrebs | June 3, 2009 12:07 AM | Report abuse

According to my Apple Software Update, there was also an update for Safari to v3.2.3 while we are waiting until Safari 4 is RTM.

Posted by: 54Stratocaster | June 4, 2009 3:22 AM | Report abuse

The comments to this entry are closed.

 
 
RSS Feed
Subscribe to The Post

© 2010 The Washington Post Company