CVE-2016-4682

An issue was discovered in certain Apple products. macOS before 10.12 is affected. macOS before 10.12.1 is affected. The issue involves the "ImageIO" component. It allows remote attackers to obtain sensitive information or cause a denial of service out-of-bounds read and application crash via a...

CVE-2016-4671

An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "ImageIO" component. It allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds write and application crash via a crafted PDF file...

CVE-2016-7643

An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "ImageIO" component. It allows remote attackers to obtain sensitive information from process memory or cause a denial of servi...

CVE-2016-4683

CVE-2016-4683 affects macOS prior to 10.12.1 and targets the ImageIO SGI image parsing code. A crafted SGI file could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service via out-of-bounds memory access, potentially crashing the application. Public refe...

CVE-2016-4683

An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "ImageIO" component. It allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds memory access and application crash via a crafted SGI file...

CVE-2016-4682

CVE-2016-4682 affects Apple macOS prior to 10.12 (and 10.12 before 10.12.1) via the ImageIO SGI image parser. The issue is described as an out-of-bounds condition in SGI image parsing that can allow an unauthenticated, remote attacker to disclose memory contents or cause a denial of service (and,...

CVE-2016-7643

CVE-2016-7643 affects Apple devices with ImageIO. A crafted web site can trigger an out-of-bounds read in ImageIO, leaking memory or causing a DoS. Affected: iOS <10.2, macOS <10.12.2, watchOS

OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)

It was discovered that the 2D component of OpenJDK performed parsing of iTXt and zTXt PNG image chunks even when configured to ignore metadata. An attacker able to make a Java application parse a specially crafted PNG image could cause the application to consume an excessive amount of memory...

OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)

It was discovered that the 2D component of OpenJDK performed parsing of iTXt and zTXt PNG image chunks even when configured to ignore metadata. An attacker able to make a Java application parse a specially crafted PNG image could cause the application to consume an excessive amount of memory...

About the security content of tvOS 9.2.1 - Apple Support

For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To learn more about Apple Product Security, see the Apple Product Security website. For information about...

About the security content of watchOS 2.2.1 - Apple Support

For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To learn more about Apple Product Security, see the Apple Product Security website. For information about...

OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)

It was discovered that the 2D component of OpenJDK performed parsing of iTXt and zTXt PNG image chunks even when configured to ignore metadata. An attacker able to make a Java application parse a specially crafted PNG image could cause the application to consume an excessive amount of memory...

OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)

It was discovered that the 2D component of OpenJDK performed parsing of iTXt and zTXt PNG image chunks even when configured to ignore metadata. An attacker able to make a Java application parse a specially crafted PNG image could cause the application to consume an excessive amount of memory...

Apple iOS < 10.2 Multiple Vulnerabilities

Binary data 9847.prm...

Multiple Apple Products ImageIO Component Memory Leak Vulnerability

Apple iOS, watchOS, macOS, and tvOS are products of Apple Inc. Apple iOS is an operating system for mobile devices; watchOS is a smartwatch operating system. imageIO is one of the static methods used to perform common image I/O operations. A security vulnerability exists in the ImageIO component ...

Mac OS X 10.x < 10.12.2 Multiple Vulnerabilities

Binary data 9840.prm...

macOS 10.12.x < 10.12.2 Multiple Vulnerabilities

The remote host is running a version of macOS that is 10.12.x prior to 10.12.2. It is, therefore, affected by multiple vulnerabilities in the following components : - apachemodphp - AppleGraphicsPowerManagement - Assets - Audio - Bluetooth - CoreCapture - CoreFoundation - CoreGraphics - CoreMedia...

Apple iOS < 10.2 Multiple Vulnerabilities

Binary data appleios102check.nbin...

Apple macOS Sierra ImageIO Arbitrary Code Execution Vulnerability

Apple macOS Sierra is a specialized operating system developed by Apple for Mac computers. imageIO is one of the static methods used to perform common image I/O operations. An arbitrary code execution vulnerability exists in ImageIO in Apple macOS Sierra versions prior to 10.12.1. A remote attack...

Mac OS X 10.x < 10.12.1 Multiple Vulnerabilities

Binary data 9758.prm...