فا

‫ Apple OS X Multiple Vulnerabilities

IRCAD2014073396

Number: IRCAD2014073396

Date: 2014/07/01

Criticality level: highly critical

Software:

Apple Macintosh OS X

Description

Apple has issued a security update for Mac OS X, which fixes two security issues and multiple vulnerabilities.

1) A boundary error in the copyfile component when handling AppleDouble files within ZIP archives can be exploited to execute arbitrary code via a specially crafted ZIP archive.

2) An error exists in cURL.

3) An array indexing error when handling messages within the Dock component can be exploited to dereference an invalid pointer and subsequently bypass certain sandbox restrictions via a specially crafted Dock message.

4) An error when handling system calls within the Graphics Driver component can be exploited to disclose kernel memory.

5) An error when handling the logging of Apple ID credentials in iBooks logs within the iBooks Commerce component can be exploited to gain access to otherwise restricted Apple ID credentials.

6) A boundary error when handling OpenCL API calls within the Intel Graphics Driver component can be exploited to execute arbitrary code with system privileges.

7) A boundary error when handling OpenCL API calls within the Intel Compute component can be exploited to execute arbitrary code with system privileges.

8) An array indexing error within the IOAcceleratorFamily component can be exploited to execute arbitrary code with system privileges.

9) A NULL pointer dereference error when handling IOKit API arguments within the IOReporting component can be exploited to cause a restart.

10) An integer underflow error within the launchd component can be exploited to execute arbitrary code with system privileges.

11) A boundary error when handling IPC messages within the launchd component can be exploited to cause a heap-based buffer overflow and subsequently execute arbitrary code with system privileges.

12) A boundary error when handling log messages within the launchd component can be exploited to cause a heap-based buffer overflow and subsequently execute arbitrary code with system privileges.

13) An integer overflow error within the launchd component can be exploited to execute arbitrary code with system privileges.

14) Some NULL pointer dereference errors within the Graphics Drivers component can be exploited to execute arbitrary code with system privileges.

15) An error when handling DTLS connections can be exploited to disclose two bytes of memory via specially crafted messages.

16) A boundary error when handling IOThunderBoltController API calls within the Thunderbolt component can be exploited to execute arbitrary code with system privileges.

Please see the vendor's advisory for a list of affected versions.

Solution:

Update to version 10.9.4 or apply Security Update 2014-003 (please see the vendor's advisory for details).

Resources:

APPLE-SA-2014-06-30-2:

secunia:
 
 
 
 
 
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 11 تیر 1393

امتیاز

امتیاز شما
تعداد امتیازها:0