November 19, 2024 at 04:54PM Apple addressed two vulnerabilities in Safari 18.1.1 for macOS Ventura and Sonoma, released on November 19, 2024. CVE-2024-44308 involves arbitrary code execution from malicious web content, while CVE-2024-44309 relates to cross-site scripting attacks. Both issues may have been actively exploited on Intel-based Mac systems. ### Meeting Notes Summary **Release Information** … Read more
October 29, 2024 at 02:42PM Apple released updates for Safari 18.1 on macOS Ventura and Sonoma on October 28, 2024, addressing multiple vulnerabilities (CVE-2024-44259, CVE-2024-44244, CVE-2024-44229, CVE-2024-44296). Issues included memory corruption and failures to enforce Content Security Policy, potentially causing process crashes when processing malicious web content. **Meeting Notes Takeaways:** **Release Information:** – **Apple ID:** … Read more
October 15, 2024 at 02:27PM Apple has released updates for Safari 17.5 on macOS Monterey and Ventura to address multiple vulnerabilities (CVE-2024-27808, CVE-2024-27830, etc.), primarily focusing on integer overflow and improved input validation. These issues could lead to arbitrary code execution and user fingerprinting from malicious web content. ### Meeting Takeaways **Apple ID**: 120896 **Release … Read more
October 15, 2024 at 01:57PM Apple ID 120913 will release an update on July 29, 2024, to address vulnerabilities (CVE-2024-40817, CVE-2024-40776, etc.) in Safari 17.6. These issues, resolved through improved state management, may allow unauthorized access to Private Browsing tabs on macOS Monterey and Ventura. **Meeting Takeaways:** – **Apple ID:** 120913 – **Release Date:** July … Read more