803 matches found
CVE-2019-8722
Multiple issues in ld64 in the Xcode toolchains were addressed by updating to version ld64-507.4. This issue is fixed in Xcode 11.0. Compiling code without proper input validation could lead to arbitrary code execution with user privilege...
CVE-2019-8723
CVE-2019-8723 affects the ld64 component in Apple Xcode toolchains. The issue stems from insufficient input validation in ld64, enabling arbitrary code execution with user privileges when compiling code. The vulnerability is addressed by updating to Xcode 11.0, which includes ld64-507.4. Public d...
CVE-2019-8724
CVE-2019-8724 concerns ld64 in the Xcode toolchains. The vulnerability arises from input validation failures in ld64, allowing arbitrary code execution with user privileges. Affected product: Apple Xcode 11.0 toolchain (macOS Mojave 10.14.4 and later) where the issue is fixed by updating to ld64-...
CVE-2019-8723
Multiple issues in ld64 in the Xcode toolchains were addressed by updating to version ld64-507.4. This issue is fixed in Xcode 11.0. Compiling code without proper input validation could lead to arbitrary code execution with user privilege...
CVE-2019-8739
CVE-2019-8739 affects Apple’s Xcode toolchain, specifically the otool component. A memory corruption issue in otool could be triggered by processing a maliciously crafted file, potentially enabling arbitrary code execution. Apple’s security content confirms the fix in Xcode 11.0 and advises upgra...
CVE-2019-8738
CVE-2019-8738 affects the otool component of Apple Xcode prior to version 11.0. It is a memory corruption issue that could allow arbitrary code execution when processing a maliciously crafted file. Apple fixed this in Xcode 11.0 by updating the affected component and improving state management. T...
CVE-2019-8738
A memory corruption issue was addressed with improved state management. This issue is fixed in Xcode 11.0. Processing a maliciously crafted file may lead to arbitrary code execution...
PT-2019-19226 · Apple · Xcode
Name of the Vulnerable Software and Affected Versions: Xcode versions prior to 11.2 Description: A memory corruption issue was addressed with improved validation. Processing a maliciously crafted file may lead to arbitrary code execution. Recommendations: For versions prior to 11.2, update to Xco...
Apple Xcode < 11.3 Code Execution (macOS)
The version of Apple Xcode installed on the remote macOS or Mac OS X host is prior to 11.3. It is, therefore, affected by a vulnerability in the ld64 component due to insufficient bounds checking. An attacker can exploit this vulnerability by persuading a victim to open a specially crafted file i...
Apple Xcode ld64 Component Buffer Overflow Vulnerability
Apple Xcode is a set of integrated development environments IDEs provided to developers by Apple, Inc. that are used to develop applications for Mac OS X and iOS. ld64 is one of the Apple toolchain linking programs. A buffer overflow vulnerability exists in the ld64 component of Apple Xcode...
Apple Xcode Arbitrary Code Execution Vulnerability (HT210796)
Apple Xcode is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:xcode";...
Apple Xcode CVE-2019-8840 Arbitrary Code Execution Vulnerability
Description Apple Xcode is prone to an arbitrary code-execution vulnerability. Attackers can leverage this issue to execute arbitrary code in the context of the user running the application. Failed exploit attempts may result in a denial-of-service condition. Versions prior to Xcode 11.3 are...
Apple Releases Multiple Security Updates
Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the Apple...
About the security content of Xcode 11.3
About the security content of Xcode 11.3 This document describes the security content of Xcode 11.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
Apple Xcode Arbitrary Code Execution Vulnerability (HT210729)
Apple Xcode is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:xcode";...
Unspecified Vulnerability in Apple Xcode LLVM Component
Apple Xcode is the United States Apple Apple company's set of integrated development environment for developers, it is mainly used for the development of Mac OS X and iOS applications. LLVM Low Level Virtual Machine is a set of LLVM team developed a framework for framing the compiler compiler...
Apple Xcode llvm component code execution vulnerability
Apple Xcode is the United States Apple Apple company's set of integrated development environment for developers, it is mainly used for the development of Mac OS X and iOS applications. LLVM Low Level Virtual Machine is a set of LLVM team developed a framework for framing the compiler compiler...
Apple Xcode Multiple Memory Corruption Vulnerabilities
Description Apple Xcode is prone to multiple memory corruption vulnerabilities. A remote attacker can leverage these issues to execute arbitrary code in the context of the user running the application. Failed exploit attempts may result in a denial-of-service condition. Versions prior to Xcode 11...
About the security content of Xcode 11.2
About the security content of Xcode 11.2 This document describes the security content of Xcode 11.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
Apple Xcode ld64 component arbitrary code execution vulnerability (CNVD-2019-34365)
Apple Xcode is a set of integrated development environments IDEs provided to developers by Apple, Inc. that are used to develop applications for Mac OS X and iOS. ld64 is one of the Apple toolchain linking programs. An arbitrary code execution vulnerability exists in the ld64 component of Apple...