10 matches found
CVE-2026-28954
A file quarantine bypass was addressed with additional checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. A maliciously crafted disk image may bypass Gatekeeper checks...
CVE-2026-28954
CVE-2026-28954 describes a file-quarantine bypass where a malicious disk image could bypass Gatekeeper checks. Concrete details from connected advisories confirm affected Apple platforms and fixed versions: iOS 18.7.9 and iPadOS 18.7.9; macOS Sequoia 15.7.7; macOS Sonoma 14.8.7; macOS Tahoe 26.5....
CVE-2026-28954
A file quarantine bypass was addressed with additional checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. A maliciously crafted disk image may bypass Gatekeeper checks...
CVE-2025-55095
The function uxhostclassstoragemediamount is responsible for mounting partitions on a USB mass storage device. When it encounters an extended partition entry in the partition table, it recursively calls itself to mount the next logical partition. This recursion occurs in...
CVE-2023-32684
Lima launches Linux virtual machines, typically on macOS, for running containerd. Prior to version 0.16.0, a virtual machine instance with a malicious disk image could read a single file on the host filesystem, even when no filesystem is mounted from the host. The official templates of Lima and t...
GO-2023-1803 In Lima, a malicious disk image could read a single file on the host filesystem as a qcow2/vmdk backing file in github.com/lima-vm/lima
In Lima, a malicious disk image could read a single file on the host filesystem as a qcow2/vmdk backing file in github.com/lima-vm/lima...
CVE-2023-32684 In Lima, a malicious disk image could read a single file on the host filesystem as a qcow2/vmdk backing file
Lima launches Linux virtual machines, typically on macOS, for running containerd. Prior to version 0.16.0, a virtual machine instance with a malicious disk image could read a single file on the host filesystem, even when no filesystem is mounted from the host. The official templates of Lima and t...
Lima 安全漏洞
github lima is a software application. Linux virtual machine, on macOS aka "Linux-on-Mac", "macOS subsystem for Linux", "Mac containerd", unofficial. Mac containerd", unofficially A security vulnerability exists in versions prior to Lima 0.16.0 that stems from a virtual machine instance with a...
Apple macOS 后置链接漏洞
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS that stems from the handling of maliciously crafted DMG files could lead to the execution of arbitrary code with system privileges. The following products and...
testdisk -- buffer overflow with malicious disk image
CGSecurity TestDisk Changelog reports: Various fix including security fix, thanks to: Coverity scan Static Analysis of source code afl-fuzz security-oriented fuzzer. Denis Andzakovic from Security Assessment for reporting an exploitable Stack Buffer Overflow. Denis Andzakovic reports: A buffer...