CVSS: 2.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8757 – Apple Security Advisory 2019-10-07-1
https://notcve.org/view.php?id=CVE-2019-8757
08 Oct 2019 — A race condition existed when reading and writing user preferences. This was addressed with improved state handling. This issue is fixed in macOS Catalina 10.15. The "Share Mac Analytics" setting may not be disabled when a user deselects the switch to share analytics. Se presentó una condición de carrera cuando se lee y escribe las preferencias del usuario. • https://support.apple.com/HT210634 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8770 – Apple Security Advisory 2019-10-07-1
https://notcve.org/view.php?id=CVE-2019-8770
08 Oct 2019 — The issue was addressed with improved permissions logic. This issue is fixed in macOS Catalina 10.15. A malicious application may be able to access recent documents. El problema fue abordado con una lógica de permisos mejorada. Este problema es corregido en macOS Catalina versión 10.15. • https://support.apple.com/HT210634 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8772 – Apple Security Advisory 2019-10-07-1
https://notcve.org/view.php?id=CVE-2019-8772
08 Oct 2019 — An issue existed in the handling of links in encrypted PDFs. This issue was addressed by adding a confirmation prompt. This issue is fixed in macOS Catalina 10.15. An attacker may be able to exfiltrate the contents of an encrypted PDF. Se presentó un problema en el manejo de enlaces en archivos PDF encriptados. • https://support.apple.com/HT210634 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8748 – Apple macOS AMDRadeonX4000_AMDSIGLContext Untrusted Pointer Dereference Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2019-8748
08 Oct 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with kernel privileges. Un problema de corrupción de memoria fue abordado mejorando el manejo de la memoria. Este problema es corregido en macOS Catalina versión 10.15. • https://support.apple.com/HT210634 • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8768 – webkitgtk: Browsing history could not be deleted
https://notcve.org/view.php?id=CVE-2019-8768
08 Oct 2019 — "Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Catalina 10.15. A user may be unable to delete browsing history items. "Clear History and Website Data" no borró el historial. • https://security.gentoo.org/glsa/202003-22 • CWE-459: Incomplete Cleanup •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8730 – Apple Security Advisory 2019-10-29-6
https://notcve.org/view.php?id=CVE-2019-8730
08 Oct 2019 — The contents of locked notes sometimes appeared in search results. This issue was addressed with improved data cleanup. This issue is fixed in macOS Catalina 10.15. A local user may be able to view a user’s locked notes. El contenido de las notas bloqueadas a veces aparecía en los resultados de búsqueda. • https://support.apple.com/HT210634 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-459: Incomplete Cleanup •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8755 – Apple macOS AppleIntelCFLGraphicsFramebuffer.kext Untrusted Pointer Dereference Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2019-8755
08 Oct 2019 — A logic issue was addressed with improved restrictions. This issue is fixed in macOS Catalina 10.15. A malicious application may be able to determine kernel memory layout. Un problema lógico fue abordado con restricciones mejoradas. Este problema es corregido en macOS Catalina versión 10.15. • https://support.apple.com/HT210634 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8758 – Apple macOS AppleIntelCFLGraphicsFramebuffer.kext Untrusted Pointer Dereference Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2019-8758
08 Oct 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with system privileges. Un problema de corrupción de memoria fue abordado mejorando el manejo de la memoria. Este problema es corregido en macOS Catalina versión 10.15. • https://support.apple.com/HT210634 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 2CVE-2019-8717 – XNU - Remote Double-Free via Data Race in IPComp Input Path
https://notcve.org/view.php?id=CVE-2019-8717
07 Oct 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15, tvOS 13. An application may be able to execute arbitrary code with kernel privileges. Un problema de corrupción de memoria fue abordado mejorando el manejo de la memoria. Este problema es corregido en macOS Catalina versión 10.15, tvOS versión 13. • https://packetstorm.news/files/id/154762 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 1%CPEs: 26EXPL: 0CVE-2019-15165 – libpcap: Resource exhaustion during PHB header length validation
https://notcve.org/view.php?id=CVE-2019-15165
03 Oct 2019 — sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory. En el archivo sf-pcapng.c en libpcap versiones anteriores a 1.9.1, no comprueba apropiadamente la longitud del encabezado PHB antes de asignar la memoria. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. The compliance-operator image updates are now available for OpenShift Container Platf... • http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00051.html • CWE-400: Uncontrolled Resource Consumption CWE-770: Allocation of Resources Without Limits or Throttling •