Impact: A local user may be able to cause a system denial of serviceĭescription: An input validation issue was addressed through improved memory handling.ĬVE-2016-4706: Recurity Labs on behalf of BSI (German Federal Office for Information Security) Impact: A remote attacker may be able to execute arbitrary codeĬVE-2016-4702: YoungJin Yoon, MinSik Shin, HoJae Han, Sunghyun Park, and Taekyoung Kwon of Information Security Lab, Yonsei University.ĭescription: A memory corruption issue was addressed through improved input validation. Impact: Processing a maliciously crafted font file may lead to arbitrary code executionĬVE-2016-4779: riusksk of Tencent Security Platform Department
This issue was addressed through improved validation of SO_EXECPATH.ĬVE-2016-4701: Meder Kydyraliev Google Security Team Impact: A local user may be able to cause a denial of serviceĭescription: A validation issue existed in the handling of firewall prompts. This issue was addressed through improved validation of the process entitlement and Team ID.ĭescription: Multiple memory corruption issues were addressed through improved input validation.ĬVE-2016-4699: Jack Tang and Moony Li of Trend Micro working with Trend Micro's Zero Day InitiativeĬVE-2016-4700: Jack Tang and Moony Li of Trend Micro working with Trend Micro’s Zero Day Initiative
Impact: A local application may be able to execute arbitrary code with system privilegesĭescription: A validation issue existed in the task port inheritance policy. Impact: An application may be able to execute arbitrary code with kernel privilegesĭescription: A memory corruption issue was addressed through improved memory handling.ĬVE-2016-4697: Qidan He from KeenLab working with Trend Micro's Zero Day Initiativeĭescription: A null pointer dereference was addressed through improved input validation.ĬVE-2016-4696: Shrek_wzw of Qihoo 360 Nirvan Team Impact: Multiple issues in PHP, the most significant of which may lead to unexpected application termination or arbitrary code execution.ĭescription: Multiple issues in PHP were addressed by updating PHP to version 5.6.24. This issue was addressed by not setting the HTTP_PROXY environment variable from CGI.ĬVE-2016-4694: Dominic Scheirlinck and Scott Geary of VendĪvailable for: OS X Lion v10.7.5 and later Impact: A remote attacker may be able to proxy traffic through an arbitrary serverĭescription: An issue existed in the handling of the HTTP_PROXY environment variable. Available for: OS X Lion v10.7.5 and later
0 kommentar(er)
