If you’re a Yosemite user, as opposed to someone who has been publicly testing OS X El Capitan, which will launch this fall, then listen up. Previously, Apple tested the software release with developers and public beta testers. At the time, Esser explained that the “DYLD_PRINT_TO_FILE” environment variable enabled error logging to an arbitrary files and lacked proper safeguards, making it potentially exploitable by an attacker.
Advertisement
The OS X Yosemite 10.10.5 update improves the stability, compatibility, and security of your Mac, and is recommended for all users. Complete details of the security patches can be found on Apple’s support site.
Other updates improve compatibility with email servers when using Mail, fix an issue in Photos that prevents importing videos from GoPro cameras, and fixes a bug in QuickTime Player that hindered playback of Windows Media files. The problem was discovered by Ryan Pentney and Richard Johnson of Cisco’s Talos security unit. “Several memory corruption vulnerabilities exist in Apple Quicktime and can manifest themselves due to improper handling of objects in memory”, Cisco stated in an advisory.
Apple has also updated iTunes, bumping its version number to 12.2.2 to add improvements to the widely noted glitches in Apple Music.
In addition to rolling out an update dubbed iOS 8.4.1 to its mobile operating system, Apple also released the OS X Yosemite v10.10.5 update for its desktop operating system. “A malicious application may be able to access the iCloud user record of a previously signed in user”, Apple warned in its advisory.
Advertisement
Apple has rolled out updates to remedy a load of CVE-listed security vulnerabilities affecting Macs, iPhones and iPads. “This issue was addressed by moving Dictionary queries to HTTPS”.
