Impact: A sandboxed process may be able to circumvent sandbox restrictionsĭescription: A configuration issue was addressed with additional restrictions.ĬVE-2018-4353: Abhinav Bansal of LinkedIn Inc. Impact: An application may be able to read restricted memoryĭescription: A validation issue was addressed with improved input sanitization.ĬVE-2018-4417: Lee of the Information Security Lab Yonsei University working with Trend Micro's Zero Day Initiative This issue was addressed with improved access controls.ĬVE-2018-4324: Sergii Kryvoblotskyi of MacPaw Inc. Impact: A malicious application may be able to determine the Apple ID of the owner of the computerĭescription: A permissions issue existed in the handling of the Apple ID. Impact: A remote attacker may be able to attack AFP servers through HTTP clientsĭescription: An input validation issue was addressed with improved input validation.ĬVE-2018-4295: Jianjun Chen from Tsinghua University and UC Berkeley
The updates below are available for these Mac models: MacBook (Early 2015 and later), MacBook Air (Mid 2012 and later), MacBook Pro (Mid 2012 and later), Mac mini (Late 2012 and later), iMac (Late 2012 and later), iMac Pro (all models), Mac Pro (Late 2013, Mid 2010, and Mid 2012 models with recommended Metal-capable graphics processor, including MSI Gaming Radeon RX 560 and Sapphire Radeon PULSE RX 580) This issue was addressed with improved input validation.ĬVE-2018-5383: Lior Neumann and Eli Biham Impact: An attacker in a privileged network position may be able to intercept Bluetooth trafficĭescription: An input validation issue existed in Bluetooth.
0 kommentar(er)
