The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of macOS

OpenSSL: NULL pointer dereference via Certificate Verification
An attacker can force a NULL pointer to be dereferenced during the certificate verification of OpenSSL (in client or server mode), in order to trigger a denial of service...
1972951, 1976113, 1976148, 1985739, 1986593, 2003480, 2003620, 2003673, 9010051, BSA-2016-006, bulletinjan2016, c05398322, CERTFR-2015-AVI-517, cisco-sa-20151204-openssl, cpuoct2017, CVE-2015-3194, DSA-2020-062, DSA-3413-1, FEDORA-2015-605de37b7f, FEDORA-2015-d87d60b9a9, FreeBSD-SA-15:26.openssl, HPESBHF03709, HT209139, JSA10759, NTAP-20151207-0001, openSUSE-SU-2015:2288-1, openSUSE-SU-2015:2289-1, openSUSE-SU-2015:2318-1, openSUSE-SU-2016:0637-1, openSUSE-SU-2016:1327-1, RHSA-2015:2617-01, SA105, SA40100, SB10203, SOL12824341, SOL30714460, SOL55540723, SOL86772626, SSA:2015-349-04, STORM-2015-017, SUSE-SU-2019:14246-1, USN-2830-1, VIGILANCE-VUL-18435
LibreSSL: two vulnerabilities
An attacker can use several vulnerabilities of LibreSSL...
CVE-2015-5333, CVE-2015-5334, HT209139, openSUSE-SU-2015:1830-1, openSUSE-SU-2015:1830-2, openSUSE-SU-2016:1327-1, VIGILANCE-VUL-18126
OpenLDAP: NULL pointer dereference via deref
An attacker can force a NULL pointer to be dereferenced in the deref overlay of OpenLDAP, in order to trigger a denial of service...
8027, bulletinjul2015, CVE-2015-1545, DSA-3209-1, FEDORA-2015-2055, HT210788, MDVSA-2015:073, MDVSA-2015:074, openSUSE-SU-2015:1325-1, USN-2622-1, VIGILANCE-VUL-16124
OpenLDAP: use after free via rwm overlay
An attacker can perform a query followed by an unbind, to use a freed memory area in the rwm overlay feature of OpenLDAP, in order to trigger a denial of service, and possibly to execute code...
1019490, 7723, CSCun32529, CVE-2013-4449, DSA-3209-1, FEDORA-2014-2012, FEDORA-2014-2967, HT210788, MDVSA-2014:026, RHSA-2014:0126-01, RHSA-2014:0206-01, USN-2622-1, VIGILANCE-VUL-14171
OpenLDAP: TLSCipherSuite ignored with NSS
When OpenLDAP uses NSS to manage SSL sessions, the TLSCipherSuite configuration directive is ignored, so an attacker can attack a weak encryption algorithm...
7285, 825875, BID-53823, CVE-2012-2668, FEDORA-2012-10000, FEDORA-2012-10023, HT210788, RHSA-2012:1151-01, VIGILANCE-VUL-11680
OpenLDAP: denial of service via attrsOnly
An attacker can use a query on attributes only, in order to stop the slapd service...
BID-52404, CERTA-2012-AVI-147, CVE-2012-1164, HT210788, MDVSA-2012:130, RHSA-2012:0899-04, USN-2622-1, VIGILANCE-VUL-11425
Our database contains other pages. You can request a free trial to read them.

Display information about macOS: