Product:

Mac_os_x

(Apple)
Date Id Summary Products Score Patch Annotated
2008-09-12 CVE-2008-3529 CVE-2008-3529 libxml2: long entity name heap buffer overflow Iphone_os, Mac_os_x, Safari, Ubuntu_linux, Debian_linux, Libxml2 N/A
2014-10-15 CVE-2014-3566 A flaw was found in the way SSL 3.0 handled padding bytes when decrypting messages encrypted using block ciphers in cipher block chaining (CBC) mode. This flaw allows a man-in-the-middle (MITM) attacker to decrypt a selected byte of a cipher text in as few as 256 tries if they are able to force a victim application to repeatedly send the same data over newly created SSL 3.0 connections. Mac_os_x, Debian_linux, Fedora, Aix, Vios, Mageia, Netbsd, Suse_linux_enterprise_desktop, Suse_linux_enterprise_server, Suse_linux_enterprise_software_development_kit, Openssl, Opensuse, Database, Enterprise_linux, Enterprise_linux_desktop, Enterprise_linux_desktop_supplementary, Enterprise_linux_server, Enterprise_linux_server_supplementary, Enterprise_linux_workstation, Enterprise_linux_workstation_supplementary 3.4
2010-08-19 CVE-2010-2500 CVE-2010-2500 freetype: integer overflow vulnerability in smooth/ftgrays.c Mac_os_x, Ubuntu_linux, Debian_linux, Freetype N/A
2010-08-19 CVE-2010-2519 CVE-2010-2519 freetype: heap buffer overflow vulnerability when processing certain font files Mac_os_x, Ubuntu_linux, Debian_linux, Freetype N/A
2010-08-19 CVE-2010-2806 CVE-2010-2806 FreeType: Heap-based buffer overflow by processing FontType42 fonts with negative length of SFNT strings (FT bug #30656) Iphone_os, Mac_os_x, Tvos, Ubuntu_linux, Freetype N/A
2010-08-19 CVE-2010-2808 CVE-2010-2808 FreeType: Stack-based buffer overflow by processing certain LWFN fonts Iphone_os, Mac_os_x, Tvos, Ubuntu_linux, Freetype N/A
2014-10-07 CVE-2014-3565 A denial of service flaw was found in the way snmptrapd handled certain SNMP traps when started with the "-OQ" option. If an attacker sent an SNMP trap containing a variable with a NULL type where an integer variable type was expected, it would cause snmptrapd to crash. Mac_os_x, Ubuntu_linux, Net\-Snmp N/A
2018-03-12 CVE-2014-8129 CVE-2014-8129 libtiff: out-of-bounds read/write with malformed TIFF image in tiff2pdf Iphone_os, Mac_os_x, Debian_linux, Libtiff, Enterprise_linux_server, Enterprise_linux_server_aus, Enterprise_linux_server_eus, Enterprise_linux_server_tus 8.8
2020-04-02 CVE-2019-14868 A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely. Mac_os_x, Debian_linux, Ksh 7.8
2022-05-26 CVE-2022-26757 A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, Security Update 2022-004 Catalina, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.4. An application may be able to execute arbitrary code with kernel privileges. Ipados, Iphone_os, Mac_os_x, Macos, Tvos, Watchos 7.8