Number: AV16-052
Date: 22 March 2016
Purpose
The purpose of this advisory is to bring attention to multiple Apple system updates for iOS, watchOS, tvOS, Xcode, OS X El Capitan, OS X Server, and Safari.
Assessment
Apple has released the following support articles:
HT206166 – iOS 9.3
HT206167 – OS X El Capitan v10.11.4
HT206168 – watchOS 2.2
HT206169 – tvOS 9.2
HT206171 – Safari 9.1
HT206172 – Xcode 7.3
HT206173 – OS X Server 5.1
Details: These updates address multiple vulnerabilities, including arbitrary remote code execution.
Multiple CVEs are referenced; please refer to Apple's advisory for specific details.
Suggested Action
CCIRC recommends that owner/operators test and deploy the vendor released updates or workarounds to affected platforms referred to in Apple Support Articles HT206166, HT206167, HT206168, HT206169, HT206171, HT206172, and HT206173.
References:
https://support.apple.com/en-us/HT206166
https://support.apple.com/en-us/HT206167
https://support.apple.com/en-us/HT206168
https://support.apple.com/en-us/HT206169
https://support.apple.com/en-us/HT206171
https://support.apple.com/en-us/HT206172
https://support.apple.com/en-us/HT206173