74 matches found
CVE-2017-6979
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "IOSurface" component. A race condition allows attackers to execute arbitrary code in a...
CVE-2017-6979
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "IOSurface" component. A race condition allows attackers to execute arbitrary code in a...
Race condition
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "IOSurface" component. A race condition allows attackers to execute arbitrary code in a...
CVE-2017-6979
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "IOSurface" component. A race condition allows attackers to execute arbitrary code in a...
CVE-2017-6979
CVE-2017-6979 involves the IOSurface kernel extension and a race condition that can let a crafted app execute code with kernel privileges on affected Apple platforms (iOS before 10.3.2, macOS before 10.12.5, tvOS before 10.2.1, watchOS before 3.2.2). Apple’s security content entries confirm a ker...
Apple TV < 10.2.1 Multiple Vulnerabilities
Binary data 700118.prm...
Mac OS X Multiple Vulnerabilities (Security Update 2017-002)
The remote host is running a version of Mac OS X 10.10.5 or 10.11.6 that is missing a security update. It is therefore, affected by multiple vulnerabilities : - A memory corruption issue exists in the Sandbox component that allows an unauthenticated, remote attacker to escape an application...
Mac OS X 10.x < 10.12.5 Multiple Vulnerabilities
Binary data 700119.prm...
Apple iOS < 10.3.2 Multiple Vulnerabilities
Binary data 700116.prm...
About the security content of iOS 10.3.2
About the security content of iOS 10.3.2 This document describes the security content of iOS 10.3.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
About the security content of watchOS 3.2.2
About the security content of watchOS 3.2.2 This document describes the security content of watchOS 3.2.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...
The vulnerability of the Mac OS X operating system, which allows a perpetrator to gain access to protected information
The vulnerability of the IOSurface component in the Mac OS X operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an intruder, acting locally, to gain access to protected information about the kernel’s memory layout using uncertain vector...
CVE-2016-7620
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOSurface" component. It allows local users to obtain sensitive kernel memory-layout information via unspecified vectors...
CVE-2016-7620
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOSurface" component. It allows local users to obtain sensitive kernel memory-layout information via unspecified vectors...
Design/Logic Flaw
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOSurface" component. It allows local users to obtain sensitive kernel memory-layout information via unspecified vectors...
CVE-2016-7620
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOSurface" component. It allows local users to obtain sensitive kernel memory-layout information via unspecified vectors...
CVE-2016-7620
CVE-2016-7620 affects macOS (IOSurface) and allows a local user to obtain sensitive kernel memory-layout information. Public docs confirm the flaw exists in IOSurface and can disclose kernel-layout data via unspecified vectors. The exploitation details are not provided in the sources; the impact ...
Apple macOS Sierra IOSurface Component Memory Corruption Vulnerability
Apple macOS Sierra is a specialized operating system developed by Apple for Mac computers.IOSurface is one of the programming framework components. A security vulnerability exists in the IOSurface component in Apple macOS Sierra versions prior to 10.12.2. A local attacker could exploit the...
Mac OS X 10.x < 10.12.2 Multiple Vulnerabilities
Binary data 9840.prm...
OS X / iOS Kernel - IOSurface Use-After-Free Vulnerability
Exploit for multiple platform in category local exploits Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=831 IOSurfaceRootUserClient stores a task struct pointer passed in via IOServiceOpen in the field at +0xf0 without taking a reference. By killing the corrisponding task we ca...