Apple has issued updates to address security issues in iTunes and the QuickTime media player software.
The QuickTime update fixes 10 flaws, each of which could allow an attacker to remotely execute code on a target system. Eight of the flaws affect both the MacOS X and Windows versions, while the remaining two apply only to the Windows Vista and XP releases.
Among the patched vulnerabilities are remote code execution flaws in the way QuickTime handles PICT and JP2 images, as well as several flaws in the handling of video files.
The iTunes update fixes just one flaw affecting the Windows and OS X versions of the media player. If exploited, the flaw could allow an attacker to remotely execute code by using a specially crafted URL to launch and then crash iTunes.
Users can obtain both updates through the Apple Software Update tool or online from the company's download site.
Wikileaks Vault 7 suspect Joshua Schulte fingered by FBI after re-using smartphone passwords on his PCs
Joshua Schulte indicted on 13 counts relating to Vault 7 leaks and trading in images of child abuse
Alexa for Hospitality will link with existing systems so guests can order room service and control the air con
Massive volcanic eruptions could have warmed Mars' surface sufficiently for oceans to form
Examination of fruit flies' brains generated more than one billion data points for scientists to analyse