lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-id: <AEECE778-6361-45A2-84F5-37A5CA4254E3@lists.apple.com>
Date: Tue, 14 Sep 2021 12:56:20 -0700
From: Apple Product Security via Fulldisclosure <fulldisclosure@...lists.org>
To: security-announce@...ts.apple.com
Subject: [FD] APPLE-SA-2021-09-13-4 Security Update 2021-005 Catalina

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2021-09-13-4 Security Update 2021-005 Catalina

Security Update 2021-005 Catalina addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT212805.

CoreGraphics
Available for: macOS Catalina
Impact: Processing a maliciously crafted PDF may lead to arbitrary
code execution. Apple is aware of a report that this issue may have
been actively exploited.
Description: An integer overflow was addressed with improved input
validation.
CVE-2021-30860: The Citizen Lab

Information will also be posted to the Apple Security Updates
web site: https://support.apple.com/kb/HT201222

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

-----BEGIN PGP SIGNATURE-----
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=IzyF
-----END PGP SIGNATURE-----


_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ