![]() Description: A denial-of-service issue was addressed with improved memory handling.Impact: A user in a privileged network position may be able to cause a denial-of-service.CVE-2023-27934: Aleksandar Nikolic of Cisco Talos.Description: A memory initialization issue was addressed.Impact: A remote user may be able to cause unexpected app termination or arbitrary code execution.Description: Multiple issues were addressed by updating curl.CVE-2023-28181: Tingting Yin of Tsinghua University.Description: The issue was addressed with improved memory handling.Impact: An app may be able to execute arbitrary code with kernel privileges.CVE-2023-27936: Tingting Yin of Tsinghua University.Description: An out-of-bounds write issue was addressed with improved input validation.Impact: An app may be able to read arbitrary files.CVE-2023-23534: Mickey Jin Available for: macOS Ventura.Impact: Processing a maliciously crafted image may result in disclosure of process memory.Description: The issue was addressed with additional restrictions on the observability of app states.Impact: A sandboxed app may be able to determine which app is currently using the camera.Description: Multiple validation issues were addressed with improved input sanitization.Impact: Importing a maliciously crafted calendar invitation may exfiltrate user information.CVE-2023-27951: Brandon Dalton of Red Canary and Csaba Fitzl of Offensive Security.Impact: An archive may be able to bypass Gatekeeper.Description: This issue was addressed by removing the vulnerable code. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |