=====================================================================

                           CERT-Renater

               Note d'Information No. 2013/VULN561
_____________________________________________________________________

DATE                : 20/12/2013

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Mac OS X running Motion versions prior to 5.1.

======================================================================
http://support.apple.com/kb/HT6041
______________________________________________________________________

APPLE-SA-2013-12-19-1 Motion 5.1

Motion 5.1 is now available and addresses the following:

Motion

Available for:  OS X Mavericks v10.9 or later

Impact:  A maliciously crafted .motn file could lead to arbitrary
code execution

Description:  An integer overflow existed in the handling of .motn
files which led to an out of bounds memory access. This issue was
addressed through improved bounds checking.

CVE-ID
CVE-2013-6114 : Jean Pascal Pereira

Motion 5.1 may be obtained from the Mac App Store.

Information will also be posted to the Apple Security Updates
web site: http://support.apple.com/kb/HT1222

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

=========================================================
Serveur de référence du CERT-Renater
https://services.renater.fr/ssi/
==========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44           +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41           +
+ 75013 Paris           | email: cert@support.renater.fr +
==========================================================