CVE-2019-8703
https://notcve.org/view.php?id=CVE-2019-8703
This issue was addressed with improved entitlements. This issue is fixed in watchOS 6, tvOS 13, macOS Catalina 10.15, iOS 13. An application may be able to gain elevated privileges. Este problema se abordó con los derechos mejorados. Este problema es corregido en watchOS versión 6, tvOS versión 13, macOS Catalina versión 10.15, iOS versión 13. • https://support.apple.com/en-us/HT210604 https://support.apple.com/en-us/HT210606 https://support.apple.com/en-us/HT210607 https://support.apple.com/en-us/HT210634 •
CVE-2018-4302
https://notcve.org/view.php?id=CVE-2018-4302
A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution. Se abordó una desreferencia de puntero null con una comprobación mejorada. Este problema es corregido en macOS High Sierra versión 10.13, iCloud para Windows versión 7.0, watchOS versión 4, iOS versión 11, iTunes versión 12.7 para Windows. • https://support.apple.com/en-us/HT208112 https://support.apple.com/en-us/HT208115 https://support.apple.com/en-us/HT208141 https://support.apple.com/en-us/HT208142 https://support.apple.com/en-us/HT208144 • CWE-476: NULL Pointer Dereference •
CVE-2017-13905
https://notcve.org/view.php?id=CVE-2017-13905
A race condition was addressed with additional validation. This issue is fixed in tvOS 11.2, iOS 11.2, macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan, watchOS 4.2. An application may be able to gain elevated privileges. Se abordó una condición de carrera con una comprobación adicional. Este problema es corregido en tvOS versión 11.2, iOS versión 11.2, macOS High Sierra versión 10.13.2, Security Update 2017-002 Sierra y Security Update 2017-005 El Capitan, watchOS versión 4.2. • https://support.apple.com/en-us/HT208325 https://support.apple.com/en-us/HT208327 https://support.apple.com/en-us/HT208331 https://support.apple.com/en-us/HT208334 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2017-13880
https://notcve.org/view.php?id=CVE-2017-13880
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 11.2, watchOS 4.2. An application may be able to execute arbitrary code with kernel privilege. Se abordó un problema de corrupción de memoria con un manejo de la memoria mejorada. Este problema se ha corregido en iOS versión 11.2, watchOS versión 4.2. • https://support.apple.com/en-us/HT208325 https://support.apple.com/en-us/HT208334 •
CVE-2017-2375
https://notcve.org/view.php?id=CVE-2017-2375
An issue existed in preventing the uploading of CallKit call history to iCloud. This issue was addressed through improved logic. This issue is fixed in iOS 10.2.1. Updates for CallKit call history are sent to iCloud. Se presentó un problema para evitar la carga del historial de llamadas de CallKit a iCloud. • https://support.apple.com/en-us/HT207482 •