Full Disclosure mailing list archives
MacOS/iPhone/Apple Watch/Apple TV libc File System Buffer Overflow
From: "[CXSEC]" <submit () cxsec org>
Date: Tue, 8 Dec 2015 23:25:37 +0100
Hi @ll, Today Apple fixed buffer overflow issue in LIBC/FTS (CVE-2015-7039). Patch available for: - OS X El Capitan v10.11 and v10.11.1 - iPhone 4s and later, - Apple Watch Sport, Apple Watch, Apple Watch Edition, and Apple Watch Hermes - Apple TV (4th generation) Impact: Processing a maliciously crafted package may lead to arbitrary code execution Description: Multiple buffer overflows existed in the C standard library. These issues were addressed through improved bounds Conception and description of issue here: https://cxsecurity.com/issue/WLB-2015100149 Best Regards, Maksymilian Arciemowicz (http://cert.cx) https://cxsecurity.com - Independent Information _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Current thread:
- MacOS/iPhone/Apple Watch/Apple TV libc File System Buffer Overflow [CXSEC] (Dec 08)