Subscribe via feed.
Posts under Apple

Apple iOS / MacOS NSCharacterSet Memory Corruption

Posted by deepcore under Apple (No Respond)

Apple iOS / MacOS suffers from a memory corruption vulnerability due to bad bounds checking in NSCharacterSet coding for NSKeyedUnarchiver.

Tags: , ,

Apple MacOS NSUnarchiver Heap Corruption

Posted by deepcore under Apple (No Respond)

Apple MacOS NSUnarchiver suffers from a heap corruption vulnerability due to lack of bounds checking in [NSBuiltinCharacterSet initWithCoder:].

Tags: , ,

Apple iOS / MacOS NSKeyedArchiver Heap Corruption

Posted by deepcore under Apple (No Respond)

Apple iOS / MacOS suffers from a NSKeyedArchiver heap corruption vulnerability due to a rounding error in TIKeyboardLayout initWithCoder:.

Tags: , ,

Apple MacOS HIServices Privilege Escalation

Posted by deepcore under Apple (No Respond)

Apple MacOS suffers from a local elevation of privilege vulnerability due to a lack of bounds checking in HIServices custom CFObject serialization.

Tags: , ,

Apple iOS / OS X NSKeyedArchiver Memory Corruption

Posted by deepcore under Apple (No Respond)

Apple iOS / OS X suffer from a NSKeyedArchiver memory corruption vulnerability due to a lack of bounds checking in CAMediaTimingFunctionBuiltin.

Tags: , ,

Apple iOS Notifications API Denial Of Service

Posted by deepcore under Apple (No Respond)

Apple iOS versions prior to 10.3.2 suffer from a notifications API denial of service vulnerability.

Tags: , ,

Apple Security Advisory 2017-05-15-1

Posted by deepcore under Apple (No Respond)

Apple Security Advisory 2017-05-15-1 – macOS 10.12.5 is now available and addresses certificate validation, privilege escalation, and various other vulnerabilities.

Tags: , ,

Apple Security Advisory 2017-05-15-2

Posted by deepcore under Apple (No Respond)

Apple Security Advisory 2017-05-15-2 – iOS 10.3.2 is now available and addresses memory corruption, code execution, and various other vulnerabilities.

Tags: , ,

Apple Security Advisory 2017-05-15-3

Posted by deepcore under Apple (No Respond)

Apple Security Advisory 2017-05-15-3 – tvOS 10.2.1 is now available and addresses memory corruption, code execution, and various other vulnerabilities.

Tags: , ,

Apple Security Advisory 2017-05-15-4

Posted by deepcore under Apple (No Respond)

Apple Security Advisory 2017-05-15-4 – watchOS 3.2.1 is now available and addresses memory corruption, code execution, and various other vulnerabilities.

Tags: , ,