>> TAG: #ios

Apple Security Advisory 2016-05-16-4 – OS X El Capitan 10.11.5 and Security Update 2016-003 is now available and addresses code execution, PHP flaws, information leakage, and various other vulnerabilities.

Apple Security Advisory 2016-05-16-3 – watchOS 2.2.1 is now available and addresses information leakage, code execution, and various other vulnerabilities.

Apple Security Advisory 2016-05-16-2 – iOS 9.3.2 is now available and addresses buffer overflow, information leakage, and various other vulnerabilities.

Apple Security Advisory 2016-05-16-1 – tvOS 9.2.1 is now available and addresses information disclosure, code execution issues, and more.

This Metasploit module exploits a shell command injection in the way “delegates” (commands for converting files) are processed in ImageMagick versions

This is a SUID, SIP, and binary entitlements universal OS X local privilege escalation exploit.

Apple iOS version 9.3.1 suffers from a Siri-related passcode bypass vulnerability.

Apple Security Advisory 2016-03-31-1 – iBooks Author 2.4.1 is now available and addresses a user information disclosure issue.

Mac OS X kernel suffers from a code execution vulnerability due to a lack of bounds checking in AppleUSBPipe::Abort.

Mac OS X kernel has an issue where an unchecked array index can be used to read an object pointer then call a virtual method in the Nvidia GEForce driver.