Impact: Processing web content may lead to a denial-of-serviceĬVE-2023-40420: 이준성(Junsung Lee) of Cross Republic Impact: An app may be able to read arbitrary files Impact: An app may fail to enforce App Transport SecurityĬVE-2023-38596: Will Brattain at Trail of Bits Impact: An app may be able to access calendar data saved to a temporary directoryĭescription: A privacy issue was addressed with improved handling of temporary files. Nakagawa added December 22, 2023ĭescription: A privacy issue was addressed with improved private data redaction for log entries.ĬVE-2023-41065: Adam M., and Noah Roskin-Frazee and Professor Jason Lau (ZeroClicks.ai Lab) Impact: Processing a file may lead to a denial-of-service or potentially disclose memory contentsĭescription: The issue was addressed with improved bounds checks.ĬVE-2023-42876: Koh M. Impact: An app may be able to bypass certain Privacy preferencesĬVE-2023-40426: Yiğit Can YILMAZ for: Mac Studio (2022 and later), iMac (2019 and later), Mac Pro (2019 and later), Mac mini (2018 and later), MacBook Air (2018 and later), MacBook Pro (2018 and later), and iMac Pro (2017) Impact: An attacker in physical proximity can cause a limited out of bounds writeĭescription: A permissions issue was addressed with additional restrictions.ĬVE-2023-40402: Yiğit Can YILMAZ for: Mac Studio (2022 and later), iMac (2019 and later), Mac Pro (2019 and later), Mac mini (2018 and later), MacBook Air (2018 and later), MacBook Pro (2018 and later), and iMac Pro (2017) Impact: An app may be able to access user-sensitive dataĭescription: The issue was addressed with improved handling of caches.ĬVE-2023-32361: Csaba Fitzl of Offensive Security Impact: An app may be able to disclose kernel memoryĬVE-2023-40399: Mohamed GHANNAM Neural Engineĭescription: An out-of-bounds read was addressed with improved input validation.ĬVE-2023-40410: Tim Michaud of Moveworks.ai Impact: An app may be able to access sensitive user dataĭescription: The issue was addressed with additional permissions checks.ĬVE-2023-42872: Mickey Jin added December 22, 2023ĬVE-2023-40432: Mohamed GHANNAM Mohamed GHANNAM updated December 22, 2023 Impact: A remote attacker may be able to break out of Web Content sandboxĭescription: The issue was addressed with improved handling of protocols. Impact: An app may be able to access protected user dataĭescription: The issue was addressed with improved checks.ĬVE-2023-42929: Mickey Jin added December 22, 2023 Impact: An app may be able to execute arbitrary code with kernel privilegesĭescription: A buffer overflow issue was addressed with improved memory handling.ĭescription: The issue was addressed with improved memory handling. Impact: An app may be able to read sensitive location informationĭescription: A permissions issue was addressed with improved redaction of sensitive information. Available for: Mac Studio (2022 and later), iMac (2019 and later), Mac Pro (2019 and later), Mac mini (2018 and later), MacBook Air (2018 and later), MacBook Pro (2018 and later), and iMac Pro (2017)
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |