>> TAG: #ios

Proof of concept demonstrating an OS X kernel out-of-bounds read of an object pointer due to insufficient checks in raw cast to enum type.

There is an OS X exploitable kernel NULL pointer dereference in nvCommandQueue::GetHandleIndex in GeForce.kext.

There is an OS X exploitable kernel NULL pointer dereference in AppleMuxControl.kext.

There’s an OS X kernel stack buffer overflow in the GeForce gpu driver.

There is an OS X exploitable kernel NULL dereference in IOAccelSharedUserClient2::page_off_resource.

The OS X kernel suffers from a use-after-free vulnerability due to bad locking in IOAcceleratorFamily2.

There is an OS X exploitable kernel NULL dereference in CoreCaptureResponder due to unchecked return value.

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a…

Apple Security Advisory 2016-05-16-6 – iTunes 12.4 is now available and addresses a code execution vulnerability.

Apple Security Advisory 2016-05-16-5 – Safari 9.1.1 is now available and addresses history deletion, data disclosure, code execution, and various other vulnerabilities.