Two vulnerabilities fixed in the latest Apple TV software update
In addition to bringing new features Apple TV software update 5.2 includes patches for two vulnerabilities affecting 2nd-generation and 3rd-generation set-top boxes.Apple has released an advisory according to which Apple TV 5.2 not only delivers new functionality but also squashes two bugs that hindered the security of the hardware.
Affecting both the second-generation and third-generation Apple TV models, an out of bounds read issue in Broadcom's BCM4325 and BCM4329 firmware's handling of 802.11i information elements could allow a remote attacker on the same Wi-Fi network to “cause an unexpected system termination,” according to KB article HT5643.
Another issue – relating to kernel checks – would allow a user-mode process to “access the first page of kernel memory.”
Both vulnerabilities are addressed in Apple TV software update 5.2. In other words, with these security issues now made public, it’s pretty important that you update your Apple set-top box.
Download Apple TV Software Update (Free)