Mac OS X Local Security Checks : Apple Mac OS X Security Updates (HT209446)-02

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.814817

Categoría: Mac OS X Local Security Checks

Título: Apple Mac OS X Security Updates (HT209446)-02

Resumen: Apple Mac OS X is prone to multiple vulnerabilities.

Descripción: Summary:
Apple Mac OS X is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws exist due to:

- A denial of service issue which was addressed with improved validation.

- A memory corruption issue which was addressed with improved state management.

- Multiple memory corruption issues which were addressed with improved input
validation.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to cause denial of service, execute arbitrary code and circumvent
sandbox restrictions.

Affected Software/OS:
Apple Mac OS X versions 10.14.x through 10.14.2

Solution:
Upgrade to Apple Mac OS X 10.14.3 or later. Please see the references for more information.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-6219
BugTraq ID: 106697
http://www.securityfocus.com/bid/106697
Common Vulnerability Exposure (CVE) ID: CVE-2019-6211
Common Vulnerability Exposure (CVE) ID: CVE-2018-20346
BugTraq ID: 106323
http://www.securityfocus.com/bid/106323
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PU4NZ6DDU4BEM3ACM3FM6GLEPX56ZQXK/
FreeBSD Security Advisory: FreeBSD-EN-19:03
https://www.freebsd.org/security/advisories/FreeBSD-EN-19:03.sqlite.asc
https://security.gentoo.org/glsa/201904-21
https://access.redhat.com/articles/3758321
https://blade.tencent.com/magellan/index_en.html
https://bugzilla.redhat.com/show_bug.cgi?id=1659379
https://bugzilla.redhat.com/show_bug.cgi?id=1659677
https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html
https://chromium.googlesource.com/chromium/src/+/c368e30ae55600a1c3c9cb1710a54f9c55de786e
https://crbug.com/900910
https://github.com/zhuowei/worthdoingbadly.com/blob/master/_posts/2018-12-14-sqlitebug.html
https://news.ycombinator.com/item?id=18685296
https://sqlite.org/src/info/940f2adc8541a838
https://sqlite.org/src/info/d44318f59044162e
https://worthdoingbadly.com/sqlitebug/
https://www.mail-archive.com/sqlite-users@mailinglists.sqlite.org/msg113218.html
https://www.oracle.com/security-alerts/cpuapr2020.html
https://www.sqlite.org/releaselog/3_25_3.html
https://lists.debian.org/debian-lts-announce/2018/12/msg00012.html
https://lists.debian.org/debian-lts-announce/2020/08/msg00037.html
SuSE Security Announcement: openSUSE-SU-2019:1159 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00040.html
SuSE Security Announcement: openSUSE-SU-2019:1222 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00070.html
https://usn.ubuntu.com/4019-1/
https://usn.ubuntu.com/4019-2/
Common Vulnerability Exposure (CVE) ID: CVE-2018-20505
http://seclists.org/fulldisclosure/2019/Jan/62
http://seclists.org/fulldisclosure/2019/Jan/64
http://seclists.org/fulldisclosure/2019/Jan/66
http://seclists.org/fulldisclosure/2019/Jan/67
http://seclists.org/fulldisclosure/2019/Jan/68
http://seclists.org/fulldisclosure/2019/Jan/69
http://www.securityfocus.com/bid/106698
https://seclists.org/bugtraq/2019/Jan/28
https://seclists.org/bugtraq/2019/Jan/29
https://seclists.org/bugtraq/2019/Jan/31
https://seclists.org/bugtraq/2019/Jan/32
https://seclists.org/bugtraq/2019/Jan/33
https://seclists.org/bugtraq/2019/Jan/39
https://sqlite.org/src/info/1a84668dcfdebaf12415d
https://support.apple.com/kb/HT209443
https://support.apple.com/kb/HT209446
https://support.apple.com/kb/HT209447
https://support.apple.com/kb/HT209448
https://support.apple.com/kb/HT209450
https://support.apple.com/kb/HT209451
Common Vulnerability Exposure (CVE) ID: CVE-2018-20506
Common Vulnerability Exposure (CVE) ID: CVE-2019-6235
BugTraq ID: 106724
http://www.securityfocus.com/bid/106724

Copyright Copyright (C) 2019 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.814817
Categoría:	Mac OS X Local Security Checks
Título:	Apple Mac OS X Security Updates (HT209446)-02
Resumen:	Apple Mac OS X is prone to multiple vulnerabilities.
Descripción:	Summary: Apple Mac OS X is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to: - A denial of service issue which was addressed with improved validation. - A memory corruption issue which was addressed with improved state management. - Multiple memory corruption issues which were addressed with improved input validation. Vulnerability Impact: Successful exploitation will allow remote attackers to cause denial of service, execute arbitrary code and circumvent sandbox restrictions. Affected Software/OS: Apple Mac OS X versions 10.14.x through 10.14.2 Solution: Upgrade to Apple Mac OS X 10.14.3 or later. Please see the references for more information. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-6219 BugTraq ID: 106697 http://www.securityfocus.com/bid/106697 Common Vulnerability Exposure (CVE) ID: CVE-2019-6211 Common Vulnerability Exposure (CVE) ID: CVE-2018-20346 BugTraq ID: 106323 http://www.securityfocus.com/bid/106323 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PU4NZ6DDU4BEM3ACM3FM6GLEPX56ZQXK/ FreeBSD Security Advisory: FreeBSD-EN-19:03 https://www.freebsd.org/security/advisories/FreeBSD-EN-19:03.sqlite.asc https://security.gentoo.org/glsa/201904-21 https://access.redhat.com/articles/3758321 https://blade.tencent.com/magellan/index_en.html https://bugzilla.redhat.com/show_bug.cgi?id=1659379 https://bugzilla.redhat.com/show_bug.cgi?id=1659677 https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html https://chromium.googlesource.com/chromium/src/+/c368e30ae55600a1c3c9cb1710a54f9c55de786e https://crbug.com/900910 https://github.com/zhuowei/worthdoingbadly.com/blob/master/_posts/2018-12-14-sqlitebug.html https://news.ycombinator.com/item?id=18685296 https://sqlite.org/src/info/940f2adc8541a838 https://sqlite.org/src/info/d44318f59044162e https://worthdoingbadly.com/sqlitebug/ https://www.mail-archive.com/sqlite-users@mailinglists.sqlite.org/msg113218.html https://www.oracle.com/security-alerts/cpuapr2020.html https://www.sqlite.org/releaselog/3_25_3.html https://lists.debian.org/debian-lts-announce/2018/12/msg00012.html https://lists.debian.org/debian-lts-announce/2020/08/msg00037.html SuSE Security Announcement: openSUSE-SU-2019:1159 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00040.html SuSE Security Announcement: openSUSE-SU-2019:1222 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00070.html https://usn.ubuntu.com/4019-1/ https://usn.ubuntu.com/4019-2/ Common Vulnerability Exposure (CVE) ID: CVE-2018-20505 http://seclists.org/fulldisclosure/2019/Jan/62 http://seclists.org/fulldisclosure/2019/Jan/64 http://seclists.org/fulldisclosure/2019/Jan/66 http://seclists.org/fulldisclosure/2019/Jan/67 http://seclists.org/fulldisclosure/2019/Jan/68 http://seclists.org/fulldisclosure/2019/Jan/69 http://www.securityfocus.com/bid/106698 https://seclists.org/bugtraq/2019/Jan/28 https://seclists.org/bugtraq/2019/Jan/29 https://seclists.org/bugtraq/2019/Jan/31 https://seclists.org/bugtraq/2019/Jan/32 https://seclists.org/bugtraq/2019/Jan/33 https://seclists.org/bugtraq/2019/Jan/39 https://sqlite.org/src/info/1a84668dcfdebaf12415d https://support.apple.com/kb/HT209443 https://support.apple.com/kb/HT209446 https://support.apple.com/kb/HT209447 https://support.apple.com/kb/HT209448 https://support.apple.com/kb/HT209450 https://support.apple.com/kb/HT209451 Common Vulnerability Exposure (CVE) ID: CVE-2018-20506 Common Vulnerability Exposure (CVE) ID: CVE-2019-6235 BugTraq ID: 106724 http://www.securityfocus.com/bid/106724
Copyright	Copyright (C) 2019 Greenbone AG