lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Date: Tue, 26 Jan 2021 13:05:41 -0800
From: Apple Product Security via Fulldisclosure <fulldisclosure@...lists.org>
To: security-announce@...ts.apple.com
Subject: [FD] APPLE-SA-2021-01-26-3 watchOS 7.3

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2021-01-26-3 watchOS 7.3

watchOS 7.3 addresses the following issues. Information about the
security content is also available at
https://support.apple.com/HT212148.

Kernel
Available for: Apple Watch Series 3 and later
Impact: A malicious application may be able to elevate privileges.
Apple is aware of a report that this issue may have been actively
exploited.
Description: A race condition was addressed with improved locking.
CVE-2021-1782: an anonymous researcher

Additional details available soon.

Installation note:

Instructions on how to update your Apple Watch software are
available at https://support.apple.com/kb/HT204641

To check the version on your Apple Watch, open the Apple Watch app
on your iPhone and select "My Watch > General > About".

Alternatively, on your watch, select "My Watch > General > About".

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE-----
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=HADK
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Powered by blists - more mailing lists