Posted by Apple Product Security on Jan 24
APPLE-SA-2017-01-23-7 iTunes for Windows 12.5.5
iTunes for Windows 12.5.5 is now available and addresses the
following:
WebKit
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution
Description: Multiple memory corruption issues were addressed through
improved memory handling.
CVE-2017-2354: Neymar of Tencent’s Xuanwu Lab (tencent.com) working
with Trend Micro’s Zero Day Initiative
WebKit
Impact:…