CVE-2014-4391
Apple OS X before 10.10 is affected by CVE-2014-4391. The issue is in Code Signing where incomplete resource envelopes in signed bundles can bypass app-author restrictions by omitting an execution-related resource, enabling potential execution of tampered code. The vulnerability arises from how t...