May 13, 2024 at 01:45PM
Summary: Apple released updates for macOS Ventura to address logic and memory corruption issues, impacting Foundation, Login Window, and RTKit. The vulnerabilities could lead to unauthorized data access and bypassing of kernel memory protections. The updates aim to improve checks, state management, and validation to mitigate potential risks.
From the meeting notes:
1. Apple ID: HT214107
2. Release Date: 2024-05-13
3. CVE-2024-27789
– A logic issue was addressed with improved checks.
– Impact: An app may be able to access user-sensitive data
– Affected product: Foundation
– Update available for: macOS Ventura
4. CVE-2023-42861
– A logic issue was addressed with improved state management.
– Impact: An attacker with knowledge of a standard user’s credentials can unlock another standard user’s locked screen on the same Mac
– Affected product: Login Window
– Update available for: macOS Ventura
5. CVE-2024-23296
– A memory corruption issue was addressed with improved validation.
– Impact: An attacker with arbitrary kernel read and write capability may be able to bypass kernel memory protections. Apple is aware of a report that this issue may have been exploited.
– Affected product: RTKit
– Update available for: macOS Ventura