Posted by Apple Product Security on Jan 19

APPLE-SA-2017-01-18-1 GarageBand 10.1.5

GarageBand 10.1.5 is now available and addresses the following:

Projects
Available for: OS X Yosemite v10.10 and later
Impact: Opening a maliciously crafted GarageBand project file may
lead to arbitrary code execution
Description: A memory corruption issue was addressed through improved
memory handling.
CVE-2017-2372: Tyler Bohan of Cisco Talos

Installation note:

GarageBand 10.1.5 may be obtained from…