On Sat, Feb 22, 2014 at 09:37 AM, William Lane wrote:
> Sent via iOS
>> On Feb 22, 2014, at 9:35, Fabian Fang <ftfang@gmail.com> wrote:
>>
>> <http://www.reuters.com/article/2014/02/22/us-apple-flaw-idUSBREA1L01Y20140222>
>>
>> and numerous other news reports
> From the article....
>
> Apple released software patches and an update for the current version of iOS for iPhone 4 and later, 5th-generation iPod touches, and iPad 2 and later.
About the security content of iOS 7.0.6
<http://support.apple.com/kb/HT6147>.
About the security content of iOS 6.1.6
<http://support.apple.com/kb/HT6146>.
About the security content of Apple TV 6.0.2
<http://support.apple.com/kb/HT6148>.
==============
Impact: An attacker with a privileged network position may capture
or modify data in sessions protected by SSL/TLS
Description: Secure Transport failed to validate the authenticity of
the connection. This issue was addressed by restoring missing
validation steps.
CVE-ID
CVE-2014-1266
-Al-
--
Al Varnell
Mountain View, CA
Reply via web post | Reply to sender | Reply to group | Start a New Topic | Messages in this topic (1) |
Aucun commentaire:
Enregistrer un commentaire