Apple, with its release of a security update, has closed 12 critical holes that caused memory corruption and buffer overflows when processing a number of media formats; this according to a release of a security update for its QuickTime media framework for Windows.

The vulnerabilities affected the playback of MP3, H.263, H.264, TeXML, JPEG, QTIF, Sorenson Video and FPX files as well as the handling of dref, enof and mvhd atoms within the program. These problems were all reported by researchers working with HP's Zero Day Initiative. Tom Gallagher and Paul Gates were responsible for 5 of them.

Apple is not yet listing details, but has announced that it will in the near future. The 40MB update for the free product can be downloaded from Apple's Support Downloads web site.