macOS 13.6.8

Microsoft Security Update Guide entry — NVD enrichira.

RedHat Openssh: CVE-2024-6387 Remote Code Execution Due To A Race Condition In Signal Handling

[Apple ImageIO] Processing an image may lead to a denial-of-service

Microsoft Security Update Guide entry — NVD enrichira.

Microsoft Security Update Guide entry — NVD enrichira.

Microsoft Security Update Guide entry — NVD enrichira.

Microsoft Security Update Guide entry — NVD enrichira.

[Apple Time Zone] An attacker may be able to read information belonging to another user

[Apple Apple Neural Engine] A local attacker may be able to cause unexpected system shutdown

[Apple CoreMedia] Processing a maliciously crafted video file may lead to unexpected app termination

[Apple AppleVA] Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory co…

[Apple Scripting Bridge] An app may be able to access information about a user’s contacts

[Apple PackageKit] An app may be able to modify protected parts of the file system

[Apple PackageKit] An app may be able to modify protected parts of the file system

[Apple AppleMobileFileIntegrity] An app may be able to bypass Privacy preferences

[Apple AppleMobileFileIntegrity] An app may be able to leak sensitive user information

[Apple PackageKit] A local attacker may be able to elevate their privileges

[Apple APFS] A malicious application may be able to bypass Privacy preferences

[Apple ImageIO] Processing a maliciously crafted file may lead to unexpected app termination

[Apple Siri] An attacker may be able to view sensitive user information

[Apple Shortcuts] A shortcut may be able to bypass Internet permission requirements

[Apple Kernel] A local attacker may be able to cause unexpected system shutdown

[Apple Shortcuts] An app may be able to access user-sensitive data

[Apple NetworkExtension] Private browsing may leak some browsing history

[Apple Security] An app may be able to read Safari's browsing history

[Apple CoreGraphics] Processing a maliciously crafted file may lead to unexpected app termination

[Apple Restore Framework] An app may be able to modify protected parts of the file system

[Apple PackageKit] A local attacker may be able to elevate their privileges

[Apple Keychain Access] An attacker may be able to cause unexpected app termination

[Apple ImageIO] Processing a maliciously crafted file may lead to unexpected app termination

[Apple Shortcuts] A shortcut may be able to use sensitive data with certain actions without prompting the user

[Apple Shortcuts] A shortcut may be able to bypass Internet permission requirements

[Apple Shortcuts] A shortcut may be able to bypass Internet permission requirements

[Apple dyld] A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication

[Apple Kernel] A local attacker may be able to cause unexpected system shutdown

[Apple Safari] Visiting a website that frames malicious content may lead to UI spoofing

[Apple Siri] An attacker with physical access may be able to use Siri to access sensitive user data

[Apple Security] Third party app extensions may not receive the correct sandbox restrictions

[Apple PackageKit] An app may be able to access user-sensitive data

[Apple DesktopServices] An app may be able to overwrite arbitrary files

[Apple Disk Management] A malicious app may be able to gain root privileges

[Apple VoiceOver] A user may be able to view restricted content from the lock screen

[Apple Shortcuts] A shortcut may be able to use sensitive data with certain actions without prompting the user

[Apple Shortcuts] A shortcut may be able to bypass sensitive Shortcuts app settings

[Apple Shortcuts] A shortcut may be able to use sensitive data with certain actions without prompting the user

[Apple Siri] A sandboxed app may be able to access sensitive user data in system logs