Apple releases Quicktime and Airport Extreme security updates

Apple has released security updates for the vulnerability published during the Month of Apple Bugs as MOAB-01-01-2007 and the closing vulnerability for the Month of Kernel Bugs , MOKB-30-11-2006. The exposure time was of 22 days for the first, and 58 days for the latter (although no public proof of concept was distributed, which would have, most probably, boosted the patch development).

• AirPort Update 2007-001 (CVE-2006-6292)
• Security Update 2007-001 (CVE-2007-0015)

kdump for Fedora Core 6 (and more Month of Kernel Bugs fun)

A nice how-to document about setting up kdump to work with the official kernel packages of Fedora Core 6. Neat for those using FC 6 and deal with kernel panics, oops, soft lockups, etc. Even better if you have the reference of the crash tool (which makes gdb command line similar to the Solaris (k)mdb debugger, probably one of the best kernel debugging tools out there).

Not so nice that Mac OS X still has no support for local kernel 'core' dumps, even if it's based on FreeBSD which already does this out of the box with the proper settings. Maybe for the next service pack :-).
Anyway, the MoKB release of today: MOKB-07-11-2006 - Linux 2.6.x zlib_inflate memory corruption. Also at the Kernel Fun blog.

First Month of Kernel Bugs (MoKB) release

The first MoKB release is out (a memory corruption bug in the Apple Airport device drivers, that can lead to arbitrary code execution, contributed by HD). Also, the archive is up and running, among the BSD version of fsfuzzer. Kelly Jackson from Dark Reading has written two nice articles about MoKB. Also, an article has been written by Brian Kebs for the Security Fix blog of the Washington Post.

Windows 2000 SP4 WehnTrust Home User

Just a quick note about WehnTrust Home User 1.0.0.9 results from a Vista-Probe 0.2 test run in a Windows 2000 Professional SP4 installation. skape has done a nice job with the ASLR stuff, it beats Vista so far (15 bits to 8bits for heap in RC1). Hope to test the SEH overwrite protection and the other goodies from commercial version soon.