Apple fixes flaws in Darwin Streaming Server

Apple has released a security update to its Darwin Streaming Server, its open source project. DSS 5.5.5 fixes two security flaws, including one where a remote attacker may be able to cause an unexpected application termination or arbitrary code execution. The company said a stack buffer overflow exists in the Darwin Streaming Proxy and that by sending maliciously-crafted RTSP requests, a remote attacker can trigger the overflow, which may lead to an unexpected application termination or arbitrary code execution.

The update addresses the issue by performing additional validation of RTSP requests. The update also fixes a flaw where a remote attacker may be able to cause an unexpected application termination or arbitrary code execution due to a heap buffer overflow in the Darwin Streaming Proxy.

The DSS 5.5.5 update is available for Mac OS X, Windows, and Linux version of the software along with the updated source code.

Filed under: software
Other story tags: Linux

top searches

1. apple

2. iphone

3. apple TV

4. ipod

5. mac

6. BBC

7. icons

8. icon

9. macbook

10. leopard

search for more ..

RSS Feeds

Have the latest content delivered to your desktop via RSS. Use the links below to get access to a specific blog, news, or reviews feed.

MacNN -all

MacNN Reviews

MacNN Podcasts

iPodNN

Electronista

Left Lane News

See all RSS feeds...

Want To Sell Your Laptop? Any Condition - receive Top Cash. Get an instant quote. Free shipping www.CashForLaptops.com
Buy from The Apple Store, iTunes.com, Amazon.com, TechDepot, OfficeDepot, Computers4Sure, or donate.

Have your product or service listed here.

Default Comment View
External Page Links
Comment Threading View