Apple Xcode up to 8.3.3 ld64 memory corruption

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in Apple Xcode up to 8.3.3 (Programming Tool Software). It has been declared as critical. Affected by this vulnerability is some unknown processing of the component ld64. Upgrading to version 9.0 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1081995001/14/2021VulD...person_nameriusksksecurityfocus.com01/14/2021accepted70
1081994901/14/2021VulD...cvss2_nvd_basescore6.8nist.gov01/14/2021accepted90
1081994801/14/2021VulD...sectracker1039386cve.mitre.org01/14/2021accepted70
1081994701/14/2021VulD...cve_nvd_summaryAn issue was discovered in certain Apple products. Xcode before 9 is affected. The issue involves the "ld64" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Mach-O file.cve.mitre.org01/14/2021accepted70
713531611/19/2019VulD...securityfocus_classInput Validation Errorsecurityfocus.com11/19/2019accepted100
713531511/19/2019VulD...securityfocus_date1505779200 (09/19/2017)securityfocus.com11/19/2019accepted100
713531211/19/2019VulD...cve_assigned1489708800mitre.org11/19/2019accepted100
713530511/19/2019VulD...confirm_urlhttps://support.apple.com/HT208103support.apple.com11/19/2019accepted100
713530311/19/2019VulD...person_nicknameriusksk11/19/2019accepted100
713525911/19/2019VulD...discoverydate150577920011/19/2019accepted100
713533709/25/2017VulD...cvss3_nvd_basescore7.8nist.gov09/25/2017accepted90
713533609/25/2017VulD...0day_days109/25/2017accepted90
713533509/25/2017VulD...cvss3_vuldb_rcC09/25/2017accepted90
713533409/25/2017VulD...cvss3_vuldb_rlO09/25/2017accepted90
713533309/25/2017VulD...cvss3_vuldb_eX09/25/2017accepted90
713533209/25/2017VulD...cvss2_vuldb_rcC09/25/2017accepted90
713533109/25/2017VulD...cvss2_vuldb_rlOF09/25/2017accepted90
713533009/25/2017VulD...cvss2_vuldb_eND09/25/2017accepted90
713532909/25/2017VulD...seealso107068 107069 107070 107072 107073 107067 10747709/25/2017accepted100
713532809/25/2017VulD...openvas_familyGeneral09/25/2017accepted100

Do you want to use VulDB in your project?

Use the official API to access entries easily!