Original release date: August 06, 2009
Last revised: --
Source: US-CERT

Systems Affected

• Apple Mac OS X versions prior to and including 10.4.11 (Tiger) and 10.5.7 (Leopard)
• Apple Mac OS X Server versions prior to and including 10.4.11 (Tiger) and 10.5.7 (Leopard)

Overview

Apple has released Mac OS X v10.5.8 / Security Update 2009-003 to correct multiple vulnerabilities affecting components of Apple Mac OS X and Mac OS X Server. Attackers could exploit these vulnerabilities to execute arbitrary code, gain access to sensitive information, or cause a denial of service.

I. Description

Apple Mac OS X v10.5.8 / Security Update 2009-003 addresses a number of vulnerabilities affecting Apple Mac OS X and Mac OS X Server. These updates also address vulnerabilities in other vendors' products that ship with Apple Mac OS X or Mac OS X Server.

II. Impact

The impact of these vulnerabilities vary. Potential consequences include arbitrary code execution, sensitive information disclosure, denial of service, or privilege escalation.

III. Solution

Install Apple Mac OS X v10.5.8 / Security Update 2009-003.  These and other updates are available via Software Update or via Apple Downloads.

IV. References

• Security Update 2009-003 / Mac OS X v10.5.8 - <http://support.apple.com/kb/HT3757>
• Mac OS X: Updating your software - <https://support.apple.com/kb/HT1338?viewlocale=en_US>
• Apple Downloads - <http://support.apple.com/downloads/>

Feedback can be directed to US-CERT.

Produced 2009 by US-CERT, a government organization. Terms of use

August 06, 2009: Initial release