CVE-2017-5209: The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service via split encoded Apple Property List data. Reference: Patch: CVE-2017-5545: The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service via Apple Property List data that is too short. Reference: Patch: CVE-2017-5834: heap-buffer-overflow in parse_dict_node; Reference: Patch: CVE-2017-5835: memory allocation error; Reference: Patch: CVE-2017-5836: issue in plist_free_data plist.c:185; Reference: Patch: