From da@securityfocus.com Tue Apr 6 18:21:55 2004 From: David Ahmad To: bugtraq@securityfocus.com Date: Tue, 6 Apr 2004 12:09:46 -0600 Subject: [product-security@apple.com: APPLE-SA-2004-04-05 Security Update 2004-04-05]] ----- Forwarded message from Apple Product Security ----- From: Apple Product Security Subject: APPLE-SA-2004-04-05 Security Update 2004-04-05 To: Date: Tue, 06 Apr 2004 09:49:37 -0700 User-Agent: Microsoft-Outlook-Express-Macintosh-Edition/5.02.2022 Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2004-04-05 Security Update 2004-04-05 Security Update 2004-04-05 is now available and contains security enhancements for the following: CUPS Printing: Fixes CAN-2004-0382 to improve the security of the printing system. This is a configuration file change that does not affect the underlying Printing system. Credit to aaron@vtty.com for reporting this issue. libxml2: Fixes CAN-2004-0110 to improve the handling of uniform resource locators. Mail: Fixes CAN-2004-0383 to improve the handling of HTML-formatted email. Credit to aaron@vtty.com for reporting this issue. OpenSSL: Fixes CAN-2004-0079 and CAN-2004-0112 to improve the handling of encryption choices. Notes: - Security Update 2004-04-05 is available for both Mac OS X 10.3.3 and Mac OS X 10.2.8 - Security Update 2004-01-26 has been incorporated into the version for Mac OS X 10.2.8 ================================================ Security Update 2004-04-05 may be obtained from: * Software Update pane in System Preferences * Apple's Software Downloads web site: Mac OS X 10.3.3 "Panther" and Mac OS X 10.3.3 Server ==================================================== http://www.apple.com/support/downloads/securityupdate_2004-04-05_ (10_3_3).html The download file is named: "SecUpd2004-04-05Pan.dmg" Its SHA-1 digest is: 30c78daca1859ddc84a6c8e5c1d31de32b4aa979 Mac OS X 10.2.8 "Jaguar" and Mac OS X 10.2.8 Server =================================================== http://www.apple.com/support/downloads/securityupdate_2004-04-05_ (10_2_8).html The download file is named: "SecUpd2004-04-05Jag.dmg" Its SHA-1 digest is: c811bab90b5cdef3e5c518ec1641860dccea0eb7 Information will also be posted to the Apple Product Security web site: http://www.apple.com/support/security/security_updates.html This message is signed with Apple's Product Security PGP key, and details are available at: http://www.apple.com/support/security/security_pgp.html -----BEGIN PGP SIGNATURE----- Version: PGP 8.0.2 iQEVAwUBQHHgvXeI0z6bzFr0AQLIzwf/fZafC/L+kT+NPNPSBXc4m6X1wZpwuYmV 88VzHRNimElGzLkL3An0/f9Fmuq9YyDHNp+51HNrHFHAc+CHin5oxaGEoP7KI2ap kA5M634yG0+cfecH7qS6ypcfqmLUdch6oE+TCR5WwT8mAHVDaDz4nl2qIrQFCAZ6 nRwhwMGaU/k3Ip9gR4jO+0zfrtC+q1vIeuqzod0nOYnphiOQNxybAuBSo3AXgWK/ 7ObG8euBIEB6Ge89iyXv8dZSsOAn7JxZMl9mjihUM4Sn938Uqlwo3nt8r78jecWh gmRSxJBpL3U4ht7o+2a8XNnOSwmh4pvgnS1hGADLjqRqenfUI4oRKg== =ec3N -----END PGP SIGNATURE----- _______________________________________________ security-announce mailing list | security-announce@lists.apple.com Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/security-announce Do not post admin requests to the list. They will be ignored. ----- End forwarded message ----- -- David Mirza Ahmad Symantec PGP: 0x26005712 8D 9A B1 33 82 3D B3 D0 40 EB AB F0 1E 67 C6 1A 26 00 57 12