MacOS posix_spawn Use-After-Free
Posted by deepcore under exploit (No Respond)
The MacOS kernel suffers from a use-after-free vulnerability due to a double-release in posix_spawn.
Archive for April, 2017
WebKit Table Use-After-Free
Posted by deepcore under exploit (No Respond)
WebKit suffers from a table related use-after-free vulnerability.
MacOS/iOS Bounds Checking Kernel Memory Corruption
Posted by deepcore under exploit (No Respond)
MacOS/iOS suffer from a kernel memory corruption vulnerability due to bad bounds checking in SIOCSIFORDER socket ioctl.
MacOS/iOS Off-By-One Kernel Memory Corruption
Posted by deepcore under exploit (No Respond)
MacOS/iOS suffers from a kernel memory corruption vulnerability due to an off-by-one in SIOCGIFORDER socket ioctl.
WebKit WebCore::toJS Use-After-Free
Posted by deepcore under exploit (No Respond)
WebKit suffers from a use-after-free vulnerability in WebCore::toJS.
MacOS/iOS necp_open Use-After-Free
Posted by deepcore under exploit (No Respond)
The MacOS/iOS kernel suffers from a use-after-free vulnerability due to bad locking in necp_open.
WebKit Synchronous Page Load UXSS
Posted by deepcore under exploit (No Respond)
WebKit suffers from a cross site scripting vulnerability via a synchronous page load.
MacOS/iOS bpf Kernel Heap Overflow
Posted by deepcore under exploit (No Respond)
The MacOS/iOS kernel suffers from a heap overflow in bpf.
MacOS audit_pipe_open Off-By-One Memory Corruption
Posted by deepcore under exploit (No Respond)
MacOS suffers from a kernel memory corruption due to an off-by-one in audit_pipe_open.
MacOS/iOS fsevents Device Double-Free
Posted by deepcore under exploit (No Respond)
The MacOS/iOS kernel suffers from double free due to bad locking in fsevents device.