Apple issues QuickTime security updates

Apple has released performance and stability fixes for QuickTime

Apple has released new Mac and PC versions of its QuickTime media player, addressing security and performance issues. The company is advising all users to install the update immediately.

Among the performance and stability fixes are improvements for the H.264 video and Motion JPEG encoding systems, and the AAC and MPEG audio encoding components.

For Mac users, the update will improve compatibility with iChat and Photo Booth.

The security aspects of the update address seven vulnerabilities in the Mac OS X and Windows versions of the player. If exploited, any of the seven flaws could allow an attacker to remotely execute code on a targeted system.

The flaws include the handling of QuickTime VR, AVI and H.263 file types.

Windows users are also being advised to install an update for the QuickTime Mpeg-2 Playback component. The update addresses a remote code execution vulnerability in the handling of MPEG-2 video files.

Users can obtain both updates via the company's Automatic Update software or at Apple's Support Downloads site.