Impact: A malicious application may be able to elevate privilegesĭescription: A permissions issue existed. Impact: A remote attacker may be able to leak sensitive user informationĬVE-2020-9828: Jianjun Dai of Qihoo 360 Alpha Lab Impact: A malicious application may be able to access a user's call historyĭescription: This issue was addressed with a new entitlement.ĬVE-2020-9776: Benjamin Randazzo for: macOS Catalina 10.15.3 Impact: An application may be able to read restricted memoryĭescription: A validation issue was addressed with improved input sanitization.ĬVE-2019-8853: Jianjun Dai of Qihoo 360 Alpha Lab Impact: A local user may be able to cause unexpected system termination or read kernel memoryĭescription: An out-of-bounds read was addressed with improved input validation.ĬVE-2020-3907: Yu Wang of Didi Research AmericaĬVE-2020-3908: Yu Wang of Didi Research AmericaĬVE-2020-3912: Yu Wang of Didi Research AmericaĬVE-2020-9779: Yu Wang of Didi Research Americaĭescription: A memory corruption issue was addressed with improved input validation.ĬVE-2020-3892: Yu Wang of Didi Research AmericaĬVE-2020-3893: Yu Wang of Didi Research AmericaĬVE-2020-3905: Yu Wang of Didi Research AmericaĪvailable for: macOS Mojave 10.14.6, macOS High Sierra 10.13.6 Impact: A malicious application may be able to determine kernel memory layoutĭescription: A memory corruption issue was addressed with improved validation.ĬVE-2020-9853: Yu Wang of Didi Research America This issue was addressed with improved state management.ĬVE-2020-6616: Jörn Tillmanns and Jiska Classen of Secure Mobile Networking Lab
FUSE FOR MACOS MAC 10.15 BLUETOOTH
Impact: An attacker in a privileged network position may be able to intercept Bluetooth trafficĭescription: An issue existed with the use of a PRNG with low entropy. Impact: An application may be able to use arbitrary entitlementsĭescription: This issue was addressed with improved checks.
FUSE FOR MACOS MAC 10.15 CODE
Impact: A malicious application may be able to execute arbitrary code with kernel privilegesĭescription: Multiple memory corruption issues were addressed with improved state management.ĬVE-2020-3904: Proteas of Qihoo 360 Nirvan Team
Impact: An application may be able to execute arbitrary code with system privilegesĭescription: A memory corruption issue was addressed with improved memory handling.ĬVE-2020-3903: Proteas of Qihoo 360 Nirvan TeamĪvailable for: macOS High Sierra 10.13.6, macOS Mojave 10.14.6, macOS Catalina 10.15.3 Impact: A sandboxed process may be able to circumvent sandbox restrictionsĭescription: A logic issue was addressed with improved restrictions.ĬVE-2020-9772: Allison Husain of UC BerkeleyĪvailable for: macOS Mojave 10.14.6, macOS High Sierra 10.13.6, macOS Catalina 10.15.3
0 kommentar(er)
