Yosemite
Out of context: Reply #43
- Started
- Last post
- 50 Responses
- utopian-3
Apple addressed some minor bugs with its weekly software update, like malware and such:
Admin Framework: privilege escalation vulnerability
Apache: multiple vulnerabilities, including one remote code execution bug
ATS: Code execution and input validation issues
CFNetwork HTTPProtocol: cross-domain cookie issue in redirect handling
CFNetwork Session: cross-domain HTTP request headers issue in redirect handling
CFURL: Input validation issue
CoreAnimation: use-after-free vulnerability
FontParser: memory corruption issues
Hypervisor: input validation
ImageIO: memory corruption
IOHIDFamily: code execution, privilege escalation, kernel memory leak, buffer overflow and other memory issues
LaunchServices: input validation and memory issues
Libnetcore: memory corruption NTP: authentication key issue
OpenLDAP: denial of service and multiple input validation issues
OpenSSL: multiple issues in OpenSSL that put secure connections at risk
Open Directory Client: unencrypted passwords sent over network
PHP: multiple vulnerabilities, including one remote code execution
QuickLook: memory corruption issue in iWork
SceneKit: heap buffer overflow
Screen Sharing: logging passwords to local files
Code Signing: apps launching without valid signatures
Uniform TypeIdentifiers: buffer overflow
WebKit: memory corruption issue