informa
/
1 min read
article

Apple Issues iPhoto Security Fix

The bug could have allowed an attacker to entice a victim into subscribing to a maliciously crafted photocast -- a sort of RSS feed for photos.
Apple on Tuesday issued an update for iPhoto '08 that includes a security vulnerability fix.

iPhoto '08 7.1.2 addresses a flaw in iPhoto '08 version 7.1 that could have allowed an attacker to entice a victim into subscribing to a maliciously crafted photocast -- a sort of RSS feed for photos -- and then to execute malicious code on the victim's system.

"This update addresses the issue through improved handling of format strings when processing photocast subscriptions," Apple said.

Apple also issued two non-security updates, ProKit 4.5 and Braille Display Update 1.0.

The ProKit update "improves reliability for Apple's professional applications and is recommended for all users of Final Cut Studio, Final Cut Express, Aperture, Logic Studio and Logic Express."

The Braille Display Update adds a screen reading technology called VoiceOver to Apple's Leopard operating system (Mac OS X 10.5). When a supported Braille display is connected, VoiceOver detects it and sends information about data displayed on the screen. It will also read text aloud.

Apple on Tuesday also introduced new iPhone and iPod Touch models.