lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list] 
Message-id: <61035D5E-83BD-40DF-8412-9B6886B798C4@lists.apple.com>
Date: Wed, 20 Aug 2025 17:10:06 -0700
From: Apple Product Security via Fulldisclosure <fulldisclosure@...lists.org>
To: security-announce@...ts.apple.com
Subject: [FD] APPLE-SA-08-20-2025-3 macOS Sequoia 15.6.1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-08-20-2025-3 macOS Sequoia 15.6.1

macOS Sequoia 15.6.1 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/124927.

Apple maintains a Security Releases page at
https://support.apple.com/100100 which lists recent
software updates with security advisories.

ImageIO
Available for: macOS Sequoia
Impact: Processing a malicious image file may result in memory
corruption. Apple is aware of a report that this issue may have been
exploited in an extremely sophisticated attack against specific targeted
individuals.
Description: An out-of-bounds write issue was addressed with improved
bounds checking.
CVE-2025-43300: Apple

macOS Sequoia 15.6.1 may be obtained from the Mac App Store or
Apple's Software Downloads web site:
https://support.apple.com/downloads/

All information is also posted on the Apple Security Releases
web site: https://support.apple.com/100100.

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

-----BEGIN PGP SIGNATURE-----
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=ZQO1
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ