Cisco AnyConnect Secure Mobility Client for OS X is affected by a vulnerability that allows local attackers to mount arbitrary DMG files at arbitrary mount points. By exploiting this vulnerability is is possible for the attacker to gain root privileges. Cisco reports that a similar issue also exists in Cisco AnyConnect Secure Mobility Client for […]
Tags:
Apple,
ios,
osx
The OS X regex engine (TRE) uses the alloca function in a few places, sometimes where an attacker can partially control the size.
Tags:
Apple,
ios,
osx
Apple Security Advisory 2015-09-21-1 – watchOS 2 is now available and addresses unexpected application termination and interception issues.
Tags:
Apple,
ios,
osx
OS X Regex Engine (TRE) suffers from a stack buffer overflow vulnerability.
Tags:
Apple,
ios,
osx
OS X Regex Engine (TRE) suffers from integer signedness and overflow issues.
Tags:
Apple,
ios,
osx
An OS X IOKit kernel memory corruption issue occurs due to a bad bzero in IOBluetoothDevice.
Tags:
Apple,
ios,
osx
Apple Security Advisory 2015-09-16-1 – iOS 9 is now available and addresses denial of service, information disclosure, and various other issues.
Tags:
Apple,
ios,
osx
Apple Security Advisory 2015-09-16-2 – Xcode 7.0 is now available and addresses traffic inspection, access bypass, and various other vulnerabilities.
Tags:
Apple,
ios,
osx
Apple Security Advisory 2015-09-16-3 – iTunes 12.3 is now available and addresses code execution, application termination, memory corruption, and various other vulnerabilities.
Tags:
Apple,
ios,
osx
Apple Security Advisory 2015-09-16-4 – OS X Server 5.0.3 is now available and addresses denial of service, code execution, and various other vulnerabilities.
Tags:
Apple,
ios,
osx
