Apple Mach-O File Memory Corruption Vulnerability

Apple Xcode is a set of integrated development environments IDEs provided to developers by Apple USA, which is mainly used to develop applications for Mac OS X and iOS. A security vulnerability exists in the ld64 component of Apple Xcode versions prior to 9. A remote attacker can exploit the...

Apple Xcode mach-o file handling memory corruption vulnerability

Apple Xcode is a set of integrated development environments IDEs provided by Apple to developers for Mac OS X and iOS applications. ld64 is one of the linker components. A security vulnerability exists in the ld64 component in versions of Apple Xcode prior to 9. A remote attacker can exploit this...

Apple Memory Corruption Vulnerability (CNVD-2017-32726)

Apple Xcode is a set of integrated development environments IDEs provided by Apple to developers for Mac OS X and iOS applications. ld64 is one of the linker components. A security vulnerability exists in the ld64 component in versions of Apple Xcode prior to 9. A remote attacker can exploit this...

Apple Memory Corruption Vulnerability (CNVD-2017-32725)

Apple Xcode is a set of integrated development environments IDEs provided by Apple to developers for Mac OS X and iOS applications. ld64 is one of the linker components. A security vulnerability exists in the ld64 component in versions of Apple Xcode prior to 9. A remote attacker can exploit this...

Apple Xcode < 9.0 Multiple RCE (macOS)

The version of Apple Xcode installed on the remote macOS or Mac OS X host is prior to 9.0. It is, therefore, affected by multiple remote code execution vulnerabilities in the git, Id64, and subversion components. An unauthenticated, remote attacker can exploit these vulnerabilities to cause...

iOS 11 Update includes Patches for Eight Vulnerabilities

iOS 11 is out today and along with a new look and feel on the iPad especially comes a handful of patches for the Apple mobile OS. Apple addressed eight CVEs in today’s iOS update, and 15 overall as it also updated Safari and the Xcode development framework. Two Webkit bugs, CVE-2017-7106 and...

Apple Releases Security Updates

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the following Apple security pages and apply the necessary...

About the security content of Xcode 9

About the security content of Xcode 9 This document describes the security content of Xcode 9. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent...

How to obtain expiration date of the "Distribution Provisioning Profile (.MOBILEPROVISION)" file of an iOS (.iPA) application

What is the "Distribution Provisioning Profile .MOBILEPROVISION" File used by Apple Xcode, a software developmentIDEoften used for creating iPhone apps; contains a provisioning profile, which allows an app to be uploaded to a limited number of iPhones or iPads while it is still in development. Yo...

idb - Tool to simplify some common tasks for iOS pentesting and research

idb is a tool to simplify some common tasks for iOS pentesting and research. Originally there was a command line version of the tool, but it is no longer under development so you should get the GUI version. Installation idb has some prerequisites. As it turns out, things like ruby and Qt are...

openSUSE Security Update : lcms2 (openSUSE-2017-179)

This update for lcms2 to version 2.8 fixes the following issues : This security issue was fixed : - Fixed an out-of-bounds heap read in TypeMLURead that could be triggered by an untrusted image with a crafted ICC profile boo1021364. These non-security issues were fixed : - Fixed many typos in...

About the security content of Xcode 8.1 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...

About the security content of Xcode 8 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...

About the security content of Xcode 7.3.1 - Apple Support

For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To learn more about Apple Product Security, see the Apple Product Security website. For information about...

About the security content of Xcode 7.3 - Apple Support

For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To learn more about Apple Product Security, see the Apple Product Security website. For information about...

Apple Xcode < 8.1 Node.js Multiple RCE (macOS)

The version of Apple Xcode installed on the remote macOS or Mac OS X host is prior to 8.1. It is, therefore, affected by multiple remote code execution vulnerabilities in the Node.js component of the Xcode Server. An unauthenticated, remote attacker can exploit these vulnerabilities to cause a...

Apple Patches iTunes, iCloud for Windows, Xcode Server

Apple’s iTunes and iCloud software for Windows PCs received updates on Thursday for vulnerabilities that could allow for the disclosure of personal information and arbitrary code execution. In addition to the Windows fixes, Apple also alerted Mac and iOS app developers to nearly a dozen security...

About the security content of Xcode 8.1

About the security content of Xcode 8.1 This document describes the security content of Xcode 8.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

CVE-2016-4705

otool in Apple Xcode before 8 allows local users to gain privileges or cause a denial of service memory corruption and application crash via unspecified vectors, a different vulnerability than CVE-2016-4704...

CVE-2016-4705

otool in Apple Xcode before 8 allows local users to gain privileges or cause a denial of service memory corruption and application crash via unspecified vectors, a different vulnerability than CVE-2016-4704...