| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 24 Oct 2022 11:39:30 -0700 From: Apple Product Security via Fulldisclosure <fulldisclosure@...lists.org> To: security-announce@...ts.apple.com Subject: [FD] APPLE-SA-2022-10-24-4 macOS Big Sur 11.7.1 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2022-10-24-4 macOS Big Sur 11.7.1 macOS Big Sur 11.7.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/HT213493. AppleMobileFileIntegrity Available for: macOS Big Sur Impact: An app may be able to modify protected parts of the file system Description: This issue was addressed by removing additional entitlements. CVE-2022-42825: Mickey Jin (@patch1t) Ruby Available for: macOS Big Sur Impact: A remote user may be able to cause unexpected app termination or arbitrary code execution Description: A memory corruption issue was addressed by updating Ruby to version 2.6.10. CVE-2022-28739 Sandbox Available for: macOS Big Sur Impact: An app with root privileges may be able to access private information Description: This issue was addressed with improved data protection. CVE-2022-32862: an anonymous researcher macOS Big Sur 11.7.1 may be obtained from the Mac App Store or Apple's Software Downloads web site: https://support.apple.com/downloads/ All information is also posted on the Apple Security Updates web site: https://support.apple.com/en-us/HT201222. This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ All information is also posted on the Apple Security Updates web site: https://support.apple.com/en-us/HT201222. This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEBP+4DupqR5Sgt1DB4RjMIDkeNxkFAmNW2esACgkQ4RjMIDke NxmiUQ//YtLnZPmpsIseSDtqn8Qkfk8jQdnTaH6ki2bpqu8Pzedc6+7m/8+WMYbj Tqh1wmAB0GeHVmMWqSucP4iHfRYtxXHeOsROD9Yu5kvuL9IA2yDOELr5Tk/sSgQE M1kg+/fWCzi3kCrUS2UIoSp7yYbTar01MSACY2TnKZk5pkFQ/NRpQzae20TwoTNP LhgUHHXdIXzYzkVdTmPqyjSFkGKQwE0nED2zBlXYSK7gmN2E8r44+k22AcYYTUCr X5z8i/TcLdVXmN34pHNaixr0N3I/qbVMOuzf1EaYNksIxJJOd6ba5ANck1trGfLG X8ndc6Q9CIqViUazvcHw87PZxozgRFEfPLmDc3Kxa6nT9EKYgCnc6mJEkdPWrhS0 s8rEpFGyIxXxnu11Ydf6U0u5nRfP2dSkgTORpUv4Ft/2mXonCBHtRZw6DrSU+vnx jThTTtZNHU6qUdbS8G/ihvL5IvEQGJe427AytDSvgkbG/FRM4yG2KCYky/y8bM/I bVVzQdP2YiQ1NBRTWaMMuUlYwisEm5KuKLDbkyzt77SKCzrFICNE1jzHfKOCapax PFppf45BKm8qPhBZp93mCSDOHb4EWn4e25tITs+h0gBVP3E4EiEklD4tPaG/b8Sg FVD5YoB5a5oCZzUtaO0Pwk5WjJOsM3m10rFACCxgNDwPJP6LrLM= =1btW -----END PGP SIGNATURE----- _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: https://seclists.org/fulldisclosure/
Powered by blists - more mailing lists