Cisco AnyConnect Secure Mobility Client for OS X is affected by a vulnerability that allows local attackers to mount arbitrary DMG files at arbitrary mount points. By exploiting this vulnerability…
>> TAG: #ios
The OS X regex engine (TRE) uses the alloca function in a few places, sometimes where an attacker can partially control the size.
Apple Security Advisory 2015-09-21-1 – watchOS 2 is now available and addresses unexpected application termination and interception issues.
OS X Regex Engine (TRE) suffers from a stack buffer overflow vulnerability.
OS X Regex Engine (TRE) suffers from integer signedness and overflow issues.
An OS X IOKit kernel memory corruption issue occurs due to a bad bzero in IOBluetoothDevice.
Apple Security Advisory 2015-09-16-1 – iOS 9 is now available and addresses denial of service, information disclosure, and various other issues.
Apple Security Advisory 2015-09-16-2 – Xcode 7.0 is now available and addresses traffic inspection, access bypass, and various other vulnerabilities.
Apple Security Advisory 2015-09-16-3 – iTunes 12.3 is now available and addresses code execution, application termination, memory corruption, and various other vulnerabilities.
Apple Security Advisory 2015-09-16-4 – OS X Server 5.0.3 is now available and addresses denial of service, code execution, and various other vulnerabilities.