About Apple security updates
Apple security documents reference vulnerabilities by CVE-ID when possible.
iTunes 12.6.1 for Windows
Released May 15, 2017
Available for: Windows 7 and later
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: Multiple memory corruption issues were addressed with improved memory handling.
CVE-2017-6984: lokihardt of Google Project Zero