Apple Inc.
APPLE-SA-2007-09-06 iTunes 7.4
Opening a maliciously crafted music file may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue by performing proper bounds checking. Credit to David Thiel of iSEC Partners for reporting this issue.
Sun Microsystems, Inc.
Security Vulnerability in RPCSEC_GSS (rpcsec_gss(3NSL)) Affects Kerberos Administration Daemon (kadmind(1M))
A stack overflow vulnerability in the RPCSEC_GSS (see rpcsec_gss(3NSL)) security flavor used to access the Generic Security Services Application Programming Interface (GSS-API) affects the Kerberos administration daemon (kadmind(1M)).
Get Slaptijack updates delivered to your Inbox or RSS Reader for free!