5 matches found
CVE-2017-7529
The CVE-2017-7529 entry concerns nginx’s range filter module. Affected software: nginx (and nginx-mainline in Arch advisories). Vulnerable component: the HTTP range/filter logic within nginx range filter/module. Root cause: integer overflow when processing crafted byte ranges, leading to informat...
CVE-2017-7134
CVE-2017-7134 affects Apple Xcode prior to 9, with the ld64 linker component. A crafted Mach-O file can trigger arbitrary code execution or memory corruption, potentially causing an application crash. Public sources (NVD entry) describe remote code execution risk, while Apple’s advisory for Xcode...
CVE-2017-7135
CVE-2017-7135 affects Apple Xcode before 9, involving the ld64 linker. A crafted Mach-O file can lead to arbitrary code execution or memory corruption causing a crash. Public sources (Apple KB HT208103, NVD entry) corroborate memory-corruption/Code Execution risks and indicate fixes were addresse...
CVE-2017-7137
Apple Xcode before version 9 is affected by ld64 memory-handling issues that can be triggered by a crafted Mach-O file, potentially enabling arbitrary code execution or a denial of service. Connected sources confirm CVE-2017-7137 (and related CVEs) apply to the ld64 component within Xcode 9 era. ...
CVE-2017-7136
CVE-2017-7136 is documented as a memory corruption vulnerability in the ld64 linker used by Apple Xcode prior to version 9, exploitable via parsing a crafted Mach‑O file to achieve arbitrary code execution or a denial of service. The connected sources (Apple security content for Xcode 9 and relat...