Chris Hickstein

**Name of the Vulnerable Software and Affected Versions** Bare Bones Software Yojimbo versions prior to 4.0 TextWrangler versions prior to 4.5.3 BBEdit versions prior to 10.5.5 **Description** The software update mechanism does not properly download and verify updates before installation, allowing attackers to perform tampering or corruption of the updates. **Recommendations** For Bare Bones Software Yojimbo versions prior to 4.0, update to version 4.0 or later. For TextWrangler versions prior to 4.5.3, update to version 4.5.3 or later. For BBEdit versions prior to 10.5.5, update to version 10.5.5 or later.