803 matches found
CVE-2024-44191
This issue was addressed through improved state management. This issue is fixed in Xcode 16, iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. An app may gain unauthorized access to Bluetooth...
CVE-2024-44191
CVE-2024-44191 affects Apple platforms and is tied to improper state management that could allow an app to gain unauthorized Bluetooth access. Connected sources confirm the issue is resolved in multiple Apple OS updates: iOS 17.7 and iPadOS 17.7, macOS Sequoia 15, iOS 18 and iPadOS 18, visionOS 2...
CVE-2024-44191
This issue was addressed through improved state management. This issue is fixed in iOS 17.7 and iPadOS 17.7, Xcode 16, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. An app may gain unauthorized access to Bluetooth...
CVE-2024-40862
A privacy issue was addressed by removing sensitive data. This issue is fixed in Xcode 16. An attacker may be able to determine the Apple ID of the owner of the computer...
CVE-2024-40862
CVE-2024-40862 pertains to an Apple Xcode security issue where an attacker could determine the Apple ID of the computer owner. All connected documents identify this as a privacy flaw that was addressed by removing sensitive data and fixes are available in Xcode 16. The vulnerability is described ...
CVE-2024-40862
A privacy issue was addressed by removing sensitive data. This issue is fixed in Xcode 16. An attacker may be able to determine the Apple ID of the owner of the computer...
CVE-2024-44162
This issue was addressed by enabling hardened runtime. This issue is fixed in Xcode 16. A malicious application may gain access to a user's Keychain items...
CVE-2024-44162
This issue was addressed by enabling hardened runtime. This issue is fixed in Xcode 16. A malicious application may gain access to a user's Keychain items...
CVE-2024-44162
CVE-2024-44162 affects the Apple Xcode IDE. A malicious application could gain access to a user’s Keychain items. The issue was addressed by enabling the hardened runtime and is fixed in Xcode 16. The Red Hat/OSS feeds corroborate: impact remains local and requires the hardened runtime mitigation...
PT-2024-31056 · Apple · Xcode +1
Name of the Vulnerable Software and Affected Versions: Xcode versions prior to 16 Description: The issue allows an app to potentially inherit Xcode permissions, enabling access to user data due to inadequate permissions checking. Recommendations: For versions prior to 16, update to Xcode 16 to...
PT-2024-29118 · Apple · Xcode +1
Name of the Vulnerable Software and Affected Versions: Xcode versions prior to 16 Description: A privacy issue was addressed by removing sensitive data. An attacker may be able to determine the Apple ID of the owner of the computer. Recommendations: For versions prior to 16, update to Xcode 16 to...
PT-2024-30997 · Apple · Xcode +1
Name of the Vulnerable Software and Affected Versions: Xcode versions prior to 16 Description: A malicious application may gain access to a user's Keychain items. This issue was addressed by enabling hardened runtime. Recommendations: For versions prior to 16, update to Xcode 16 to resolve the...
About the security content of Xcode 16
About the security content of Xcode 16 This document describes the security content of Xcode 16. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recen...
OPENSUSE-SU-2024:0201-1 Security update for Botan
This update for Botan fixes the following issues: Update to 2.19.5: Fix multiple Denial of service attacks due to X.509 cert processing: CVE-2024-34702 - boo1227238 CVE-2024-34703 - boo1227607 CVE-2024-39312 - boo1227608 Fix a crash in OCB Fix a test failure in compression with certain versions o...
Malicious code in xcode-staple (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-3969 Malicious code in xcode-staple (npm)
--- -= Per source details. Do not edit below this line.=-...
Apple Xcode Security Update (HT214092)
Apple Xcode is prone to a gatekeeper bypass vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:xcode";...
Apple Xcode Security Vulnerability
Apple Xcode is a set of integrated development environments IDEs provided to developers by Apple Inc. in the United States, which are primarily used to develop applications for Mac OS X and iOS. A security vulnerability exists in versions of Apple Xcode prior to 15.3, which stems from the presenc...
PT-2024-19791 · Apple · Xcode +1
Name of the Vulnerable Software and Affected Versions: Xcode affected versions not specified Description: A logic issue was addressed with improved state management. The issue allowed app bypass of Gatekeeper checks. An update for Xcode was released to fix this issue, available for macOS Sonoma...
About the security content of Xcode 15.3
About the security content of Xcode 15.3 This document describes the security content of Xcode 15.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...