![]() ![]() CVE-2023-27958: Aleksandar Nikolic of Cisco Talos.CVE-2023-27953: Aleksandar Nikolic of Cisco Talos.Impact: A remote user may be able to cause unexpected system termination or corrupt kernel memory.CVE-2023-27935: Aleksandar Nikolic of Cisco Talos.Description: The issue was addressed with improved bounds checks.CVE-2023-28180: Aleksandar Nikolic of Cisco Talos.Description: A denial-of-service issue was addressed with improved memory handling.Impact: A user in a privileged network position may be able to cause a denial-of-service.CVE-2023-27934: Aleksandar Nikolic of Cisco Talos.Description: A memory initialization issue was addressed.Impact: A remote user may be able to cause unexpected app termination or arbitrary code execution.Description: Multiple issues were addressed by updating curl.CVE-2023-28181: Tingting Yin of Tsinghua University.Description: The issue was addressed with improved memory handling.Impact: An app may be able to execute arbitrary code with kernel privileges.CVE-2023-27936: Tingting Yin of Tsinghua University.Description: An out-of-bounds write issue was addressed with improved input validation.Impact: An app may be able to read arbitrary files.CVE-2023-23534: Mickey Jin Available for: macOS Ventura.Impact: Processing a maliciously crafted image may result in disclosure of process memory.Description: The issue was addressed with additional restrictions on the observability of app states.Impact: A sandboxed app may be able to determine which app is currently using the camera.Description: Multiple validation issues were addressed with improved input sanitization.Impact: Importing a maliciously crafted calendar invitation may exfiltrate user information.CVE-2023-27951: Brandon Dalton of Red Canary and Csaba Fitzl of Offensive Security.Impact: An archive may be able to bypass Gatekeeper.Description: This issue was addressed by removing the vulnerable code.Impact: An app may be able to access user-sensitive data.CVE-2023-23527: Mickey Jin Available for: macOS Ventura.Description: The issue was addressed with improved checks.Impact: A user may gain access to protected parts of the file system.CVE-2023-23532: Mohamed Ghannam Available for: macOS Ventura.Description: This issue was addressed with improved checks.Impact: An app may be able to break out of its sandbox. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |