lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-id: <8A52E01B-1854-4686-9436-ECBF852D0D8E@lists.apple.com>
Date: Mon, 14 Dec 2020 17:18:05 -0800
From: Apple Product Security via Fulldisclosure <fulldisclosure@...lists.org>
To: security-announce@...ts.apple.com
Subject: [FD] APPLE-SA-2020-12-14-8 Safari 14.0.2

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2020-12-14-8 Safari 14.0.2

Safari 14.0.2 addresses the following issues. Information
about the security content is also available at
https://support.apple.com/HT212007.

WebRTC
Available for: macOS Catalina and macOS Mojave
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution
Description: A use after free issue was addressed with improved
memory management.
CVE-2020-15969: an anonymous researcher

Installation note:

Safari 14.0.2 may be obtained from the Mac App Store.

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE-----
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=Fr8q
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ