Apple issues Xcode security update
Miscreants exploiting flaws could gain control of an affected Apple system.
A security update was issued by Apple on Tuesday to address two vulnerabilities in Xcode – an integrated development environment (IDE) housing a variety of software development tools used in creating apps for Apple devices.
"A heap-based buffer overflow issue existed in the handling of filenames," the advisory stated. The issue was addressed by updating git – a version control system widely used in software development – to version 2.7.4.
Miscreants exploiting the flaws could execute arbitrary code to gain control of an affected system.The U.S. Cert is advising users and admins to take a look at the company's update for Xcode and update to version 7.3.1 for OS X El Capitan v10.11 and later.