Alert GCSA-20118 - Apple Security Updates APPLE-SA-2020-12-14
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
alert ID: GCSA-20118
data: 15 dicembre 2020
titolo: Apple Security Updates APPLE-SA-2020-12-14
******************************************************************
:: Descrizione del problema
Apple ha rilasciato i seguenti aggiornamenti di sicurezza
che risolvono delle vulnerabilita' presenti nei sistemi operativi
e nelle applicazioni.
APPLE-SA-2020-12-14-1 iOS 14.3 and iPadOS 14.3
APPLE-SA-2020-12-14-2 iOS 12.5
APPLE-SA-2020-12-14-3 macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave
APPLE-SA-2020-12-14-4 Additional information for APPLE-SA-2020-11-13-1 macOS Big Sur 11.0.1
APPLE-SA-2020-12-14-5 watchOS 7.2
APPLE-SA-2020-12-14-6 watchOS 6.3
APPLE-SA-2020-12-14-7 tvOS 14.3
APPLE-SA-2020-12-14-8 Safari 14.0.2
APPLE-SA-2020-12-14-9 macOS Server 5.11
Maggiori informazioni sono disponibili nelle segnalazioni
ufficiali alla sezione "Riferimenti".
:: Software interessato
Apple iOS
Apple iPadOS
Apple macOS
Apple macOS Server
Apple watchOS
Apple tvOS
Apple Safari
:: Impatto
Information Disclosure (ID)
https://cwe.mitre.org/data/definitions/200.html
Cross-Site Scripting (XSS)
https://cwe.mitre.org/data/definitions/79.html
Denial of Service (DoS)
https://cwe.mitre.org/data/definitions/400.html
Remote Code/Command Execution (RCE)
https://cwe.mitre.org/data/definitions/94.html
Unauthorised Access
https://cwe.mitre.org/data/definitions/284.html
Elevation of Privilege (EoP)
Modify Arbitrary Files
Reduced Security
Root Compromise
:: Soluzione
Applicare i security update e gli aggiornamenti rilasciati
https://support.apple.com/downloads
Aggiornare il software sul Mac
https://support.apple.com/it-it/HT201541
Aggiornare iPhone, iPad o iPod touch
https://support.apple.com/it-it/HT204204
https://www.apple.com/itunes/
Aggiornare Apple TV
https://support.apple.com/it-it/HT202716
Aggiornare Apple Watch
https://support.apple.com/it-it/HT204641
Aggiornare o reinstallare Safari
https://support.apple.com/it-it/HT204416
:: Riferimenti
Aggiornamenti di sicurezza Apple
https://support.apple.com/it-it/HT201222
https://support.apple.com/it-it/HT212003
https://support.apple.com/it-it/HT212004
https://support.apple.com/it-it/HT212011
https://support.apple.com/it-it/HT211931
https://support.apple.com/it-it/HT212009
https://support.apple.com/it-it/HT212006
https://support.apple.com/it-it/HT212005
https://support.apple.com/it-it/HT212007
https://support.apple.com/it-it/HT211932
Apple security-announce Mailing List
https://lists.apple.com/archives/security-announce/2020/Dec/index.html
I riferimenti CVE sono disponibili nell'advisory originale.
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFf2MC6wZxMk2USYEIRAhyLAJ4zMilHra3Om6jv6Qazi5yFKzWCQgCgxvXU
OJHUigSi4i49WQTzaEvnKYo=
=E3vZ
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
alert ID: GCSA-20118
data: 15 dicembre 2020
titolo: Apple Security Updates APPLE-SA-2020-12-14
******************************************************************
:: Descrizione del problema
Apple ha rilasciato i seguenti aggiornamenti di sicurezza
che risolvono delle vulnerabilita' presenti nei sistemi operativi
e nelle applicazioni.
APPLE-SA-2020-12-14-1 iOS 14.3 and iPadOS 14.3
APPLE-SA-2020-12-14-2 iOS 12.5
APPLE-SA-2020-12-14-3 macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave
APPLE-SA-2020-12-14-4 Additional information for APPLE-SA-2020-11-13-1 macOS Big Sur 11.0.1
APPLE-SA-2020-12-14-5 watchOS 7.2
APPLE-SA-2020-12-14-6 watchOS 6.3
APPLE-SA-2020-12-14-7 tvOS 14.3
APPLE-SA-2020-12-14-8 Safari 14.0.2
APPLE-SA-2020-12-14-9 macOS Server 5.11
Maggiori informazioni sono disponibili nelle segnalazioni
ufficiali alla sezione "Riferimenti".
:: Software interessato
Apple iOS
Apple iPadOS
Apple macOS
Apple macOS Server
Apple watchOS
Apple tvOS
Apple Safari
:: Impatto
Information Disclosure (ID)
https://cwe.mitre.org/data/definitions/200.html
Cross-Site Scripting (XSS)
https://cwe.mitre.org/data/definitions/79.html
Denial of Service (DoS)
https://cwe.mitre.org/data/definitions/400.html
Remote Code/Command Execution (RCE)
https://cwe.mitre.org/data/definitions/94.html
Unauthorised Access
https://cwe.mitre.org/data/definitions/284.html
Elevation of Privilege (EoP)
Modify Arbitrary Files
Reduced Security
Root Compromise
:: Soluzione
Applicare i security update e gli aggiornamenti rilasciati
https://support.apple.com/downloads
Aggiornare il software sul Mac
https://support.apple.com/it-it/HT201541
Aggiornare iPhone, iPad o iPod touch
https://support.apple.com/it-it/HT204204
https://www.apple.com/itunes/
Aggiornare Apple TV
https://support.apple.com/it-it/HT202716
Aggiornare Apple Watch
https://support.apple.com/it-it/HT204641
Aggiornare o reinstallare Safari
https://support.apple.com/it-it/HT204416
:: Riferimenti
Aggiornamenti di sicurezza Apple
https://support.apple.com/it-it/HT201222
https://support.apple.com/it-it/HT212003
https://support.apple.com/it-it/HT212004
https://support.apple.com/it-it/HT212011
https://support.apple.com/it-it/HT211931
https://support.apple.com/it-it/HT212009
https://support.apple.com/it-it/HT212006
https://support.apple.com/it-it/HT212005
https://support.apple.com/it-it/HT212007
https://support.apple.com/it-it/HT211932
Apple security-announce Mailing List
https://lists.apple.com/archives/security-announce/2020/Dec/index.html
I riferimenti CVE sono disponibili nell'advisory originale.
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFf2MC6wZxMk2USYEIRAhyLAJ4zMilHra3Om6jv6Qazi5yFKzWCQgCgxvXU
OJHUigSi4i49WQTzaEvnKYo=
=E3vZ
-----END PGP SIGNATURE-----