Alert GCSA-18010 - Apple Security Updates APPLE-SA-2018-1-23
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
**********************************************************************
Alert ID: GCSA-18010
Data: 26 Gennaio 2018
Titolo: Apple Security Updates APPLE-SA-2018-1-23
**********************************************************************
:: Descrizione del problema
Apple ha rilasciato vari aggiornamenti di sicurezza relativi a iOS,
tvOS, MacOS High Sierra, watchOS, Safari, iCloud for Windows, iTunes for
Windows, Safari
Per una descrizione completa si rimanda alla sezione 'Riferimenti'.
:: Piattaforme e Software interessati
iOS precedenti la versione 11.2.5
tvOS precedenti la versione 11.2.5
macOS High Sierra, el Capitain 10.13.3
watchOS 4.2.2
Safari 11.0.3
iCloud for Windows precedenti la versione 7.3
iTunes for Windows 12.7.3
:: Impatto
Rilascio di informazioni sensibili
Esecuzione di codice arbitrario
Accesso e controllo di HomeKit smart accessories
:: Soluzione
Applicare i security update
https://support.apple.com/downloads
:: Riferimenti
Aggiornamenti di sicurezza Apple
https://support.apple.com/en-us/HT201222
APPLE-SA-2018-1-23-1 iOS 11.2.5
https://support.apple.com/it-it/HT208463
APPLE-SA-2018-1-23-2 macOS High Sierra 10.13.3
Security Update 2018-001 Sierra
Security Update 2018-001 El Capitan
https://support.apple.com/it-it/HT208465
APPLE-SA-2018-1-23-3 watchOS 4.2.2
https://support.apple.com/it-it/HT208464
APPLE-SA-2018-1-23-4 tvOS 11.2.5
https://support.apple.com/it-it/HT208462
APPLE-SA-2018-1-23-5 Safari 11.0.3
https://support.apple.com/en-us/HT208475
APPLE-SA-2018-1-23-6 iTunes 12.7.3 for Windows
https://support.apple.com/en-us/HT208474
APPLE-SA-2018-1-23-7 iCloud for Windows 7.3
https://support.apple.com/en-us/HT208473
Securitytracker
https://securitytracker.com/id/1040265
https://securitytracker.com/id/1040266
https://securitytracker.com/id/1040267
https://securitytracker.com/id/1040269
https://securitytracker.com/id/1040271
US-CERT
https://www.us-cert.gov/ncas/current-activity/2018/01/23/Apple-Releases-Multiple-Security-Updates
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4082
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4084
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4085
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4086
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4087
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4088
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4090
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4093
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4095
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4097
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4100
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAlpq9RIACgkQwZxMk2USYEKTcQCgi/WSYh3mdprFlFUUPIGYKBWl
XkAAn2F7IFiuV/3qNdGA6DRypt3UaU5g
=UdO9
-----END PGP SIGNATURE-----
Hash: SHA1
**********************************************************************
Alert ID: GCSA-18010
Data: 26 Gennaio 2018
Titolo: Apple Security Updates APPLE-SA-2018-1-23
**********************************************************************
:: Descrizione del problema
Apple ha rilasciato vari aggiornamenti di sicurezza relativi a iOS,
tvOS, MacOS High Sierra, watchOS, Safari, iCloud for Windows, iTunes for
Windows, Safari
Per una descrizione completa si rimanda alla sezione 'Riferimenti'.
:: Piattaforme e Software interessati
iOS precedenti la versione 11.2.5
tvOS precedenti la versione 11.2.5
macOS High Sierra, el Capitain 10.13.3
watchOS 4.2.2
Safari 11.0.3
iCloud for Windows precedenti la versione 7.3
iTunes for Windows 12.7.3
:: Impatto
Rilascio di informazioni sensibili
Esecuzione di codice arbitrario
Accesso e controllo di HomeKit smart accessories
:: Soluzione
Applicare i security update
https://support.apple.com/downloads
:: Riferimenti
Aggiornamenti di sicurezza Apple
https://support.apple.com/en-us/HT201222
APPLE-SA-2018-1-23-1 iOS 11.2.5
https://support.apple.com/it-it/HT208463
APPLE-SA-2018-1-23-2 macOS High Sierra 10.13.3
Security Update 2018-001 Sierra
Security Update 2018-001 El Capitan
https://support.apple.com/it-it/HT208465
APPLE-SA-2018-1-23-3 watchOS 4.2.2
https://support.apple.com/it-it/HT208464
APPLE-SA-2018-1-23-4 tvOS 11.2.5
https://support.apple.com/it-it/HT208462
APPLE-SA-2018-1-23-5 Safari 11.0.3
https://support.apple.com/en-us/HT208475
APPLE-SA-2018-1-23-6 iTunes 12.7.3 for Windows
https://support.apple.com/en-us/HT208474
APPLE-SA-2018-1-23-7 iCloud for Windows 7.3
https://support.apple.com/en-us/HT208473
Securitytracker
https://securitytracker.com/id/1040265
https://securitytracker.com/id/1040266
https://securitytracker.com/id/1040267
https://securitytracker.com/id/1040269
https://securitytracker.com/id/1040271
US-CERT
https://www.us-cert.gov/ncas/current-activity/2018/01/23/Apple-Releases-Multiple-Security-Updates
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4082
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4084
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4085
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4086
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4087
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4088
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4090
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4093
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4095
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4097
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4100
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAlpq9RIACgkQwZxMk2USYEKTcQCgi/WSYh3mdprFlFUUPIGYKBWl
XkAAn2F7IFiuV/3qNdGA6DRypt3UaU5g
=UdO9
-----END PGP SIGNATURE-----