[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 8472 Download | Alert*

The host is installed with Apple Mac OS 14 before 14.1.2 or Apple Safari before 17.1.2 on Apple Mac OS 12 or Apple Mac OS 13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a memory corruption issue. On successful exploitation, processing web content may lead to arbitrary code execution.

The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary, or disclose sensitive information.

Florian Picca reported a bug the charon-tkm daemon in strongSwan an IKE/IPsec suite. The TKM-backed version of the charon IKE daemon doesn"t check the length of received Diffie-Hellman public values before copying them to a fixed-size buffer on the stack, causing a buffer overflow that could potentially be exploited for remote code execution by sending a specially crafted and unauthenticated IKE_ ...

strongswan: IPsec VPN solution strongSwan could be made to crash or run programs if it received specially crafted network traffic.

webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK.

The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2023-42916 Clement Lecigne discovered that processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been actively exploited. CVE-2023-42917 Clement Lecigne discovered that processing web content may lead to arbitrary code execution. Apple is aware of a report th ...

The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2023-42883 The Zoom Offensive Security Team discovered that processing a SVG image may lead to a denial-of-service.

webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK.

This update for webkit2gtk3 fixes the following issues: * CVE-2023-42890: Fixed processing malicious web content may lead to arbitrary code execution . * CVE-2023-42883: Fixed processing a malicious image may lead to a denial-of- service . * CVE-2023-41074: Fixed use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports . * CVE-2023-39928: Fixed use-after-free in the MediaRecorde ...

This update for webkit2gtk3 fixes the following issues: * CVE-2023-42890: Fixed processing malicious web content may lead to arbitrary code execution . * CVE-2023-42883: Fixed processing a malicious image may lead to a denial-of- service . * CVE-2023-41074: Fixed use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports . * CVE-2023-39928: Fixed use-after-free in the MediaRecorde ...


Pages:      Start    548    549    550    551    552    553    554    555    556    557    558    559    560    561    ..   847

© SecPod Technologies