Number: AV17-069
Date: 16 May 2017
Purpose
The purpose of this advisory is to bring attention to multiple Apple system security updates for iOS, macOS (Sierra, El Capitan, Yosemite) and Safari.
Assessment
Apple has released the following support articles:
- HT207595 - Safari 10.1.1
- HT207797 - macOS Sierra 10.12.4, OS X El Capitan 10.11.6, and OS X Yosemite 10.10.5
- HT207798 - iOS 10.3.2
This update addresses multiple vulnerabilities on the systems listed above.
CVE Reference: CVE-2017-2494, CVE-2017-2495, CVE-2017-2496, CVE-2017-2497, CVE-2017-2498, CVE-2017-2499, CVE-2017-2501, CVE-2017-2502, CVE-2017-2503, CVE-2017-2504, CVE-2017-2505, CVE-2017-2506, CVE-2017-2507, CVE-2017-2508, CVE-2017-2509, CVE-2017-2510, CVE-2017-2512, CVE-2017-2513, CVE-2017-2514, CVE-2017-2515, CVE-2017-2516, CVE-2017-2518, CVE-2017-2519, CVE-2017-2520, CVE-2017-2521, CVE-2017-2524, CVE-2017-2525, CVE-2017-2526, CVE-2017-2527, CVE-2017-2528, CVE-2017-2530, CVE-2017-2531, CVE-2017-2533, CVE-2017-2534, CVE-2017-2535, CVE-2017-2536, CVE-2017-2537, CVE-2017-2538, CVE-2017-2539, CVE-2017-2540, CVE-2017-2541, CVE-2017-2542, CVE-2017-2543, CVE-2017-2544, CVE-2017-2545, CVE-2017-2546, CVE-2017-2547, CVE-2017-2548, CVE-2017-2549, CVE-2017-6977, CVE-2017-6978, CVE-2017-6979, CVE-2017-6980, CVE-2017-6981, CVE-2017-6982, CVE-2017-6983, CVE-2017-6984, CVE-2017-6985, CVE-2017-6986, CVE-2017-6987, CVE-2017-6988, CVE-2017-6989, CVE-2017-6990, CVE-2017-6991
Suggested action
CCIRC recommends that owner/operators test and deploy the vendor released updates or workarounds to affected platforms.
References
https://support.apple.com/en-ca/HT207595
https://support.apple.com/en-ca/HT207797
https://support.apple.com/en-ca/HT207798