lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Date: Mon, 26 Apr 2021 15:51:57 -0700
From: Apple Product Security via Fulldisclosure <fulldisclosure@...lists.org>
To: security-announce@...ts.apple.com
Subject: [FD] APPLE-SA-2021-04-26-10 Xcode 12.5

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2021-04-26-10 Xcode 12.5

Xcode 12.5 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT212320.

Git
Available for: macOS Big Sur 11 and later
Impact: A remote attacker may be able to cause arbitrary code
execution
Description: This issue was addressed with improved checks.
CVE-2021-21300: an anonymous researcher

To check that the Xcode has been updated:

* Select Xcode in the menu bar
* Select About Xcode
* The version after applying this update will be "Xcode 12.5".

Information will also be posted to the Apple Security Updates
web site: https://support.apple.com/kb/HT201222

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

-----BEGIN PGP SIGNATURE-----
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=peGE
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Powered by blists - more mailing lists