CVE-2016-4671
CVE-2016-4671 affects ImageIO in macOS before 10.12.1. A crafted PDF file can trigger an out-of-bounds write, allowing remote code execution or a denial of service (application crash) when processed by ImageIO. The vulnerability is mitigated in macOS Sierra 10.12.1 via Security Update 2016-002/20...