Impact: A local user may be able to read kernel memoryĭescription: An out-of-bounds read was addressed through improved bounds checking. Impact: Processing a maliciously crafted image may lead to arbitrary code executionĬVE-2016-7705: Craig Young of Tripwire VERT Impact: A remote attacker may be able to cause a denial of serviceĭescription: A memory consumption issue was addressed through improved memory handling.ĭescription: Multiple memory corruption issues were addressed through improved memory handling.ĬVE-2016-4631 : Tyler Bohan of Cisco Talos (/vulnerability-reports) This issue was addressed through improved memory handling. Impact: A malicious application may be able to execute arbitrary code with kernel privilegesĭescription: A memory corruption issue existed in the kernel. These issues were addressed through improved FaceTime display logic. Impact: An attacker in a privileged network position may be able to cause a relayed call to continue transmitting audio while appearing as if the call terminatedĭescription: User interface inconsistencies existed in the handling of relayed calls. Impact: A remote attacker may be able to execute arbitrary codeĭescription: A memory corruption issue was addressed through improved memory handling.ĬVE-2016-4637 : Tyler Bohan of Cisco Talos (/vulnerability-reports) This issue was addressed through improved warnings.ĬVE-2016-4642 : Jerry Decime coordinated via CERT Impact: An application may unknowingly send a password unencrypted over the networkĭescription: Proxy authentication incorrectly reported HTTP proxies received credentials securely. This issue was addressed through improved response validation.ĬVE-2016-4643 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua University Jerry Decime coordinated via CERT This issue was addressed by storing the authentication types with the credentials.ĬVE-2016-4644 : Jerry Decime coordinated via CERTĭescription: A validation issue existed in the parsing of 407 responses. Impact: An attacker in a privileged network position may be able to leak sensitive user informationĭescription: A downgrade issue existed with HTTP authentication credentials saved in Keychain. Impact: A maliciously crafted calendar invite may cause a device to unexpectedly restartĭescription: A null pointer dereference was addressed through improved memory handling.ĬVE-2016-4605 : Henry Feldman MD at Beth Israel Deaconess Medical Center Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |