|
|
|
MacShock.com - Apple Forums
|
|
 |
11-14-2011, 06:50 PM
|
 |
|
Guest
Posts: n/a
|
iTunes 5.1
Got an email from Apple that iTunes 5.1 is available. I couldn't find it
in Software update, but found it at the iTunes web page. It implemented iTunes Match, plus one security/bug fix: Available for: Â*Mac OS X v10.5 or later, Windows 7, Vista, XP SP2 or later Impact: Â*A man-in-the-middle attacker may offer software that appears to originate from Apple Description: Â*iTunes periodically checks for software updates using an HTTP request to Apple. This request may cause iTunes to indicate that an update is available. If Apple Software Update for Windows is not installed, clicking the Download iTunes button may open the URL from the HTTP response in the user's default browser. This issue has been mitigated by using a secured connection when checking for available updates. For OS X systems, the user's default browser is not used because Apple Software Update is included with OS X, however this change adds additional defense-in-depth. CVE-ID CVE-2008-3434 : Francisco Amato of Infobyte Security Research -- Tea Party Patriots is to Patriotism as People's Democratic Republic is to Democracy. |
|
|
11-14-2011, 08:40 PM
|
|
|
Guest
Posts: n/a
|
iTunes 5.1
On Mon, 14 Nov 2011 12:32:17 -0700, Michelle Steiner <michelle@michelle.org>
wrote: >Got an email from Apple that iTunes 5.1 is available. I couldn't find it >in Software update, but found it at the iTunes web page. It implemented >iTunes Match, plus one security/bug fix: > >Available for: *Mac OS X v10.5 or later, Windows 7, Vista, >XP SP2 or later > >Impact: *A man-in-the-middle attacker may offer software that appears >to originate from Apple > >Description: *iTunes periodically checks for software updates using >an HTTP request to Apple. This request may cause iTunes to indicate >that an update is available. If Apple Software Update for Windows is >not installed, clicking the Download iTunes button may open the URL >from the HTTP response in the user's default browser. This issue has >been mitigated by using a secured connection when checking for >available updates. For OS X systems, the user's default browser is >not used because Apple Software Update is included with OS X, >however this change adds additional defense-in-depth. > >CVE-ID >CVE-2008-3434 : Francisco Amato of Infobyte Security Research Michelle, Doesn't this cost $24.99 @ year? Is this what you are referring to? TIA. |
|
|
|
11-14-2011, 08:40 PM
|
|
|
Guest
Posts: n/a
|
iTunes 5.1
In article <vbs2c7ds214dukaa69q8uqi7tqlu6adus9@4ax.com>,
c_mulholland@nym.hush.com wrote: > Doesn't this cost $24.99 @ year? Is this what you are referring to? Yes, iTunes Match costs $24.99 a year. -- Tea Party Patriots is to Patriotism as People's Democratic Republic is to Democracy. |
|
|
|
11-14-2011, 08:40 PM
|
|
|
Guest
Posts: n/a
|
iTunes 5.1
In article <vbs2c7ds214dukaa69q8uqi7tqlu6adus9@4ax.com>,
c_mulholland@nym.hush.com wrote: > On Mon, 14 Nov 2011 12:32:17 -0700, Michelle Steiner <michelle@michelle.org> > wrote: > > >Got an email from Apple that iTunes 5.1 is available. I couldn't find it > >in Software update, but found it at the iTunes web page. It implemented > >iTunes Match, plus one security/bug fix: > > > >Available for: *Mac OS X v10.5 or later, Windows 7, Vista, > >XP SP2 or later > > > >Impact: *A man-in-the-middle attacker may offer software that appears > >to originate from Apple > > > >Description: *iTunes periodically checks for software updates using > >an HTTP request to Apple. This request may cause iTunes to indicate > >that an update is available. If Apple Software Update for Windows is > >not installed, clicking the Download iTunes button may open the URL > >from the HTTP response in the user's default browser. This issue has > >been mitigated by using a secured connection when checking for > >available updates. For OS X systems, the user's default browser is > >not used because Apple Software Update is included with OS X, > >however this change adds additional defense-in-depth. > > > >CVE-ID > >CVE-2008-3434 : Francisco Amato of Infobyte Security Research > > Michelle, > > Doesn't this cost $24.99 @ year? Is this what you are referring to? > > TIA. The iTunes Match service costs 24.99/yr; the security fix is in iTunes 10.5.1 whether or not you subscribe to iTunes Match. |
|
|
|
11-14-2011, 08:40 PM
|
|
|
Guest
Posts: n/a
|
iTunes 5.1
On Mon, 14 Nov 2011 11:53:04 -0800, c_mulholland@nym.hush.com wrote:
> On Mon, 14 Nov 2011 12:32:17 -0700, Michelle Steiner <michelle@michelle.org> > wrote: > >>Got an email from Apple that iTunes 5.1 is available. I couldn't find it >>in Software update, but found it at the iTunes web page. It implemented >>iTunes Match, plus one security/bug fix: >> >>Available for: *Mac OS X v10.5 or later, Windows 7, Vista, >>XP SP2 or later >> >>Impact: *A man-in-the-middle attacker may offer software that appears >>to originate from Apple >> >>Description: *iTunes periodically checks for software updates using >>an HTTP request to Apple. This request may cause iTunes to indicate >>that an update is available. If Apple Software Update for Windows is >>not installed, clicking the Download iTunes button may open the URL >>from the HTTP response in the user's default browser. This issue has >>been mitigated by using a secured connection when checking for >>available updates. For OS X systems, the user's default browser is >>not used because Apple Software Update is included with OS X, >>however this change adds additional defense-in-depth. >> >>CVE-ID >>CVE-2008-3434 : Francisco Amato of Infobyte Security Research > > Michelle, > > Doesn't this cost $24.99 @ year? Is this what you are referring to? > > TIA. That's the extended iCloud. $25 bucks a yr for 5G of storage. You can buy a memory stick for about that much. |
|
|
|
11-14-2011, 08:40 PM
|
|
|
Guest
Posts: n/a
|
iTunes 5.1
In article <3i0efaznzb4l$.htijwgmxqsb1$.dlg@40tude.net>,
salgud <spamboy6547@comcast.net> wrote: > That's the extended iCloud. $25 bucks a yr for 5G of storage. You can > buy a memory stick for about that much. We're not talking about that; we're talking about iTunes Match. But you're wrong about the iCloud pricing, regardless. 5G is free. Additional storage is at these rates: 10GB is $20 a year; 20GB is $40 a year; 50GB is $100 a year. IOW, you gave wrong information about something that wasn't even being discussed. -- Tea Party Patriots is to Patriotism as People's Democratic Republic is to Democracy. |
|
|
|
11-14-2011, 08:40 PM
|
|
|
Guest
Posts: n/a
|
iTunes 5.1
On 2011-11-14 14:32 , Michelle Steiner wrote:
> Got an email from Apple that iTunes 5.1 is available. I couldn't find it > in Software update, but found it at the iTunes web page. Got it via Software Update. -- gmail originated posts filtered due to spam. |
|
|
|
11-15-2011, 07:10 AM
|
|
|
Guest
Posts: n/a
|
iTunes 5.1
Salut Michelle
In article <michelle-0493F8.12321714112011@news.eternal-september.org>, Michelle Steiner <michelle@michelle.org> wrote: > Got an email from Apple that iTunes 5.1 is available. I couldn't find it > in Software update, but found it at the iTunes web page. It implemented > iTunes Match, plus one security/bug fix: erm, are u sure about this subject line and content of what you are writing? iTunes 5 must be ages ago if it ever existed... <http://en.wikipedia.org/wiki/ITunes_version_history> Cheers Andreas -- MacAndreas Rutishauser, <http://www.MacAndreas.ch> EDV-Dienstleistungen, Hard- und Software, Internet und Netzwerk Beratung, Unterstuetzung und Schulung <mailto:andreas@MacAndreas.ch>, Fon: 044 / 721 36 47 |
|
|
|
11-15-2011, 07:10 AM
|
|
|
Guest
Posts: n/a
|
iTunes 5.1
In article <andreas-CF4D30.06502615112011@news.individual.de>,
Andreas Rutishauser <andreas@macandreas.ch> wrote: > > Got an email from Apple that iTunes 5.1 is available. I couldn't find > > it in Software update, but found it at the iTunes web page. It > > implemented iTunes Match, plus one security/bug fix: > > erm, are u sure about this subject line and content of what you are > writing? 10.5.1. The content is accurate, except for the error in the version number. -- Tea Party Patriots is to Patriotism as People's Democratic Republic is to Democracy. |
|
|
|
11-15-2011, 02:30 PM
|
|
|
Guest
Posts: n/a
|
iTunes 5.1
Michelle Steiner:
> > Got an email from Apple that iTunes 5.1 is available. I couldn't find it > > in Software update, but found it at the iTunes web page. It implemented > > iTunes Match, plus one security/bug fix: Andreas Rutishauser: > erm, are u sure about this subject line and content of what you are > writing? > > iTunes 5 must be ages ago if it ever existed... > <http://en.wikipedia.org/wiki/ITunes_version_history> Do you suppose that one of the following is possible? A) Ms. Steiner was wrote shorthand in which "10" was a given and "5.1" meant "10.5.1" (released yesterday). B) Ms. Steiner made an unimportant typographical error. Property damage was minimal and no lives were lost. Davoud -- I agree with almost everything that you have said and almost everything that you will say in your entire life. usenet *at* davidillig dawt cawm |
|
|
Linear Mode
| Copyright ©2007-2008 MacShock.com. |
Powered by vBulletin Copyright ©2000 - 2012, Jelsoft Enterprises Ltd. |
