December 11, 2023 at 01:45PM Several privacy and security issues were addressed in the release of Apple’s software update, including improved data redaction, memory handling, and input validation. These updates apply to various products and address potential impacts such as unauthorized access to sensitive data, arbitrary code execution, and denial-of-service. Update is available for Apple … Read more
December 8, 2023 at 12:33PM Summary: Apple ID HT214042, released on 2023-11-06, addresses CVE-2023-42867 by improving process entitlement and Team ID validation. The issue could allow an app to gain root privileges in GarageBand. Updates are available for macOS Ventura and macOS Sonoma. Based on the meeting notes: Issue: CVE-2023-42867 Description: Improved validation of process … Read more
October 25, 2023 at 02:36PM Summary: Apple has addressed several security vulnerabilities in its products. These include issues with memory handling, cache handling, and improved state management. The impact of these vulnerabilities ranges from denial-of-service attacks to arbitrary code execution. Affected products include CoreAnimation, Find My, ImageIO, IOTextEncryptionFamily, Kernel, Mail Drafts, mDNSResponder, Pro Res, Safari, … Read more
October 25, 2023 at 02:36PM There are multiple updates available for macOS Monterey addressing various security issues. These include improved memory handling, removal of vulnerable code, and improved handling of caches and symlinks. The updates address issues related to denial-of-service attacks, sensitive information access, arbitrary code execution, and privacy concerns. Affected products include CoreAnimation, FileProvider, … Read more
October 25, 2023 at 02:36PM Summary: Apple has released an update for macOS Sonoma that addresses multiple security issues affecting various products such as App Support, AppSandbox, Contacts, CoreAnimation, Emoji, FileProvider, Find My, Foundation, ImageIO, IOTextEncryptionFamily, iperf3, Kernel, LaunchServices, Login Window, Mail Drafts, Maps, Model I/O, Networking, Passkeys, Photos, Pro Res, Safari, Siri, talagent, Terminal, … Read more
October 25, 2023 at 02:36PM Summary: Multiple security issues have been addressed in macOS Ventura. These include improved memory handling, removal of vulnerable code, improved handling of caches and symlinks, improved checks, and additional permissions checks. These issues could result in denial-of-service attacks, disclosure of sensitive information, arbitrary code execution, and unauthorized access to sensitive … Read more
October 25, 2023 at 02:36PM Summary: Apple has addressed several security vulnerabilities in the WebKit software. These issues could potentially lead to arbitrary code execution or denial-of-service attacks when processing web content. Updates are available for macOS Monterey and macOS Ventura. Here are the key takeaways from the meeting notes: 1. Apple has released an … Read more
October 25, 2023 at 02:36PM Apple has released updates for several of its products including Find My, Kernel, Mail Drafts, mDNSResponder, Siri, Weather, and WebKit. These updates address various issues such as improved handling of caches, memory handling, user interface consistency, and logic checks. The impacts of these issues range from potential access to sensitive … Read more
October 25, 2023 at 02:36PM Summary: Apple has released an update addressing an integer overflow vulnerability that allows apps to execute arbitrary code with kernel privileges. There are reports of active exploitation on iOS versions prior to 15.7. The affected product is the Kernel, and the update is available for several iPhone and iPad models. … Read more