Tuesday, May 15, 2012, 04:40 pm PT (07:40 pm ET)
Quicktime for Windows update brings host of security fixesApple on Tuesday released Quicktime 7.7.2 for Windows PCs to fix a total of 17 security vulnerabilities, most of which don't affect Mac users as patches were included in OS X software updates.
The issues addressed pertain only to computers running Windows 7, Vista or XP with service pack 2 or later, with 14 of the 17 flaws credited to research involving HP's Zero Day Initiative.
Many of the fixes in Quicktime 7.7.2 had to do with heap, buffer, stack and integer overflows when viewing maliciously coded files, while others dealt with memory corruption and file handling issues. All of the bugs caused unexpected program termination, arbitrary code execution, or both, though none were reported to have been exploited.
The Zero Day Initiative, founded by TippingPoint which is now part of HP, pays a bounty for independent researchers to find bugs which are subsequently passed along to software makers for resolution.
More information about the specific flaws can be found through Apple's Quicktime 7.7.2 support page while the Windows-only update can be downloaded here.
On Topic: General
- Apple CEO Tim Cook says privacy talks with Chinese government were 'very open'
- Former Apple exec Ron Johnson wants to make online shopping personal with new startup 'Enjoy'
- Apple says its 'ambitious' sapphire manufacturing process is 'not ready for production'
- GT Advanced to exit sapphire production business, Apple to recover $439M prepayment over 4 years
- Christian Bale confirmed to play Steve Jobs in upcoming biopic, to start shooting soon