CVE-2017-2509 – Apple macOS - '32-bit syscall exit' Kernel Register Leak
https://notcve.org/view.php?id=CVE-2017-2509
An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app. Se detectó un problema en ciertos productos de Apple. macOS anterior a versión 10.12.5 está afectado. El problema implica el componente "Kernel". • https://www.exploit-db.com/exploits/42046 http://www.securitytracker.com/id/1038484 https://support.apple.com/HT207797 •
CVE-2017-2524 – Apple macOS/iOS - 'TIKeyboardLayout initWithCoder:' NSKeyedArchiver Heap Corruption Due to Rounding Error
https://notcve.org/view.php?id=CVE-2017-2524
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "TextInput" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted data. Fue encontrado un problema en algunos productos de Apple. iOS anteriores a la versión 10.3.2 se ven afectados. macOS anterior a la versión 10.12.5 se vea afectado. tvOS anterior a la versión la 10.2.1 se ve afectado. watchOS anterior a la versión 3.2.2 se ve afectado. El problema involucra el componente "TextInput". • https://www.exploit-db.com/exploits/42051 http://www.securityfocus.com/bid/98468 http://www.securitytracker.com/id/1038484 https://support.apple.com/HT207797 https://support.apple.com/HT207798 https://support.apple.com/HT207800 https://support.apple.com/HT207801 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-2527 – Apple macOS/iOS - 'CAMediaTimingFunctionBuiltin' NSKeyedArchiver Memory Corruption Due to Lack of Bounds Checking
https://notcve.org/view.php?id=CVE-2017-2527
An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "CoreAnimation" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory consumption and application crash) via crafted data. Se descubrió un problema en ciertos productos de Apple. MacOS anterior a versión 10.12.5 está afectado. • https://www.exploit-db.com/exploits/42052 http://www.securitytracker.com/id/1038484 https://support.apple.com/HT207797 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-2497
https://notcve.org/view.php?id=CVE-2017-2497
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "iBooks" component. It allows remote attackers to trigger visits to arbitrary URLs via a crafted book. Se descubrió un problema en ciertos productos de Apple. iOS anterior a versión 10.3.2 está afectado. macOS anterior a versión 10.12.5 está afectado. El problema involucra el componente "iBooks". • http://www.securitytracker.com/id/1038484 https://support.apple.com/HT207797 https://support.apple.com/HT207798 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVE-2017-2520
https://notcve.org/view.php?id=CVE-2017-2520
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted SQL statement. Fue encontrado un problema en algunos productos de Apple. iOS anteriores a la versión 10.3.2 se ven afectados. macOS anterior a la versión 10.12.5 se vea afectado. tvOS anterior a la versión la 10.2.1 se ve afectado. watchOS anterior a la versión 3.2.2 se ve afectado. El problema involucra el componente "SQLite". • http://www.securityfocus.com/bid/98468 http://www.securitytracker.com/id/1038484 https://lists.debian.org/debian-lts-announce/2019/01/msg00009.html https://support.apple.com/HT207797 https://support.apple.com/HT207798 https://support.apple.com/HT207800 https://support.apple.com/HT207801 https://usn.ubuntu.com/4019-1 • CWE-787: Out-of-bounds Write •