The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Apple MacOS X

Apple macOS: two vulnerabilities
An attacker can use several vulnerabilities of Apple macOS...
CERTFR-2017-AVI-334, CVE-2017-7149, CVE-2017-7150, HT208165, VIGILANCE-VUL-24040
curl: out-of-bounds memory reading via FTP PWD
An attacker can force a read at an invalid address via FTP PWD of curl, in order to trigger a denial of service, or to obtain sensitive information...
2011879, bulletinapr2018, CVE-2017-1000254, DLA-1121-1, DSA-2019-114, DSA-2020-030, DSA-3992-1, FEDORA-2017-601b4c20a4, HT208331, HT208394, JSA10874, K-511316, openSUSE-SU-2017:2880-1, RHSA-2018:3558-01, SSA:2017-279-01, STORM-2019-002, USN-3441-1, USN-3441-2, VIGILANCE-VUL-24018
Ruby: buffer overflow via OpenSSL ASN1 Decode
An attacker can generate a buffer overflow via OpenSSL ASN1 Decode of Ruby, in order to trigger a denial of service, and possibly to run code...
bulletinjan2019, CVE-2017-14033, DLA-1114-1, DLA-1421-1, DSA-4031-1, FEDORA-2017-6e6f4f95e6, HT208937, HT209193, RHSA-2018:0378-01, RHSA-2018:0583-01, RHSA-2018:0585-01, SSA:2017-261-03, SUSE-SU-2020:1570-1, USN-3439-1, USN-3528-1, VIGILANCE-VUL-23927
Ruby: code execution via WEBrick Basic Authentication
An attacker can use a vulnerability via WEBrick Basic Authentication of Ruby, in order to run code...
bulletinjan2019, CVE-2017-10748-ERROR, CVE-2017-10784, DLA-1113-1, DLA-1114-1, DLA-1421-1, DSA-4031-1, FEDORA-2017-6e6f4f95e6, HT208937, HT209193, RHSA-2017:3485-01, RHSA-2018:0378-01, RHSA-2018:0583-01, RHSA-2018:0585-01, SSA:2017-261-03, SUSE-SU-2020:1570-1, USN-3439-1, USN-3528-1, USN-3685-1, VIGILANCE-VUL-23926
Ruby: information disclosure via sprintf
A local attacker can read a memory fragment via sprintf() of Ruby, in order to obtain sensitive information...
bulletinjan2019, CVE-2017-0898, DLA-1113-1, DLA-1114-1, DLA-1421-1, DSA-4031-1, FEDORA-2017-6e6f4f95e6, HT208937, HT209193, RHSA-2017:3485-01, RHSA-2018:0378-01, RHSA-2018:0583-01, RHSA-2018:0585-01, SSA:2017-261-03, SUSE-SU-2020:1570-1, USN-3439-1, USN-3685-1, VIGILANCE-VUL-23867
Apache httpd: information disclosure via htaccess Limit Optionsbleed
When Apache httpd hosts an .htaccess file with the Limit option, an OPTIONS query can retrieve an extract of the service memory...
2009782, bulletinjan2018, CERTFR-2017-AVI-336, cpujan2018, cpujan2019, CVE-2017-9798, DLA-1102-1, DSA-2019-131, DSA-2019-197, DSA-3980-1, FEDORA-2017-a52f252521, HT208331, HT208394, JSA10838, openSUSE-SU-2017:2549-1, openSUSE-SU-2018:1057-1, RHSA-2017:2882-01, RHSA-2017:2972-01, RHSA-2017:3018-01, RHSA-2017:3113-01, RHSA-2017:3114-01, RHSA-2017:3239-01, RHSA-2017:3240-01, SSA:2017-261-01, Synology-SA-17:56, USN-3425-1, USN-3425-2, VIGILANCE-VUL-23863
tcpdump: multiple vulnerabilities
An attacker can use several vulnerabilities of tcpdump...
CVE-2017-11541, CVE-2017-11542, CVE-2017-11543, CVE-2017-12893, CVE-2017-12894, CVE-2017-12895, CVE-2017-12896, CVE-2017-12897, CVE-2017-12898, CVE-2017-12899, CVE-2017-12900, CVE-2017-12901, CVE-2017-12902, CVE-2017-12985, CVE-2017-12986, CVE-2017-12987, CVE-2017-12988, CVE-2017-12989, CVE-2017-12990, CVE-2017-12991, CVE-2017-12992, CVE-2017-12993, CVE-2017-12994, CVE-2017-12995, CVE-2017-12996, CVE-2017-12997, CVE-2017-12998, CVE-2017-12999, CVE-2017-13000, CVE-2017-13001, CVE-2017-13002, CVE-2017-13003, CVE-2017-13004, CVE-2017-13005, CVE-2017-13006, CVE-2017-13007, CVE-2017-13008, CVE-2017-13009, CVE-2017-13010, CVE-2017-13011, CVE-2017-13012, CVE-2017-13013, CVE-2017-13014, CVE-2017-13015, CVE-2017-13016, CVE-2017-13017, CVE-2017-13018, CVE-2017-13019, CVE-2017-13020, CVE-2017-13021, CVE-2017-13022, CVE-2017-13023, CVE-2017-13024, CVE-2017-13025, CVE-2017-13026, CVE-2017-13027, CVE-2017-13028, CVE-2017-13029, CVE-2017-13030, CVE-2017-13031, CVE-2017-13032, CVE-2017-13033, CVE-2017-13034, CVE-2017-13035, CVE-2017-13036, CVE-2017-13037, CVE-2017-13038, CVE-2017-13039, CVE-2017-13040, CVE-2017-13041, CVE-2017-13042, CVE-2017-13043, CVE-2017-13044, CVE-2017-13045, CVE-2017-13046, CVE-2017-13047, CVE-2017-13048, CVE-2017-13049, CVE-2017-13050, CVE-2017-13051, CVE-2017-13052, CVE-2017-13053, CVE-2017-13054, CVE-2017-13055, CVE-2017-13687, CVE-2017-13688, CVE-2017-13689, CVE-2017-13690, CVE-2017-13725, DLA-1097-1, DSA-2020-030, HT208221, openSUSE-SU-2017:2875-1, SSA:2017-251-03, SUSE-SU-2019:14191-1, tcpdump_advisory3, USN-3415-1, USN-3415-2, VIGILANCE-VUL-23787
Ruby: information disclosure via JSON Library
An attacker can bypass access restrictions to data via JSON Library of Ruby, in order to obtain sensitive information...
bulletinjan2019, CVE-2017-14064, DLA-1114-1, DLA-1421-1, DSA-3966-1, FEDORA-2017-e136d63c99, HT208937, HT209193, RHSA-2017:3485-01, RHSA-2018:0378-01, RHSA-2018:0583-01, RHSA-2018:0585-01, SSA:2017-261-03, SUSE-SU-2020:1570-1, USN-3439-1, USN-3528-1, USN-3685-1, VIGILANCE-VUL-23734
OpenSSL: out-of-bounds memory reading via X.509 IPAddressFamily
An attacker can force a read at an invalid address via X.509 IPAddressFamily of OpenSSL, in order to trigger a denial of service, or to obtain sensitive information...
2011879, 2013026, 2014367, bulletinapr2018, CERTFR-2019-AVI-242, cpuapr2018, cpuapr2019, cpujan2018, cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2017-3735, DSA-4017-1, DSA-4018-1, FEDORA-2017-4cf72e2c11, FEDORA-2017-512a6c5aae, FEDORA-2017-55a3247cfd, FEDORA-2017-7f30914972, FEDORA-2017-dbec196dd8, FreeBSD-SA-17:11.openssl, HT208331, HT208394, ibm10715641, ibm10738249, JSA10851, JSA10990, K21462542, openSUSE-SU-2017:3192-1, openSUSE-SU-2018:0029-1, openSUSE-SU-2018:0315-1, RHSA-2018:3221-01, SA157, SB10211, SUSE-SU-2017:2968-1, SUSE-SU-2017:2981-1, SUSE-SU-2018:0112-1, SUSE-SU-2019:14246-1, TNS-2017-15, USN-3475-1, VIGILANCE-VUL-23636
SQLite: information disclosure via Pointer Disclosure
An attacker can bypass access restrictions to data via Pointer Disclosure of SQLite, in order to obtain sensitive information...
1475207, CVE-2017-7000, DSA-3926-1, FEDORA-2017-571e659c85, FEDORA-2017-5f2b220c7c, FEDORA-2017-c708c044e3, FEDORA-2017-f79ae2b96f, HT207797, openSUSE-SU-2017:1993-1, openSUSE-SU-2017:1994-1, RHSA-2017:1833-01, VIGILANCE-VUL-23528
Our database contains other pages. You can request a free trial to read them.

Display information about Apple MacOS X: