Posted by Apple Product Security on Dec 14
APPLE-SA-2016-12-13-3 iTunes 12.5.4
iTunes 12.5.4 is now available and addresses the following:
WebKit
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution
Description: Multiple memory corruption issues were addressed through
improved memory handling.
CVE-2016-4692: Apple
CVE-2016-7635: Apple
CVE-2016-7652: Apple
WebKit
Impact: Processing maliciously crafted web content may result in the
disclosure of process…