Apple Xcode up to 8.3.3 ld64 memory corruption

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in Apple Xcode up to 8.3.3 (Programming Tool Software). It has been rated as critical. Affected by this issue is an unknown function of the component ld64. Upgrading to version 9.0 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1081995401/14/2021VulD...person_nameriusksksecurityfocus.com01/14/2021accepted70
1081995301/14/2021VulD...cvss2_nvd_basescore6.8nist.gov01/14/2021accepted90
1081995201/14/2021VulD...sectracker1039386cve.mitre.org01/14/2021accepted70
1081995101/14/2021VulD...cve_nvd_summaryAn issue was discovered in certain Apple products. Xcode before 9 is affected. The issue involves the "ld64" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Mach-O file.cve.mitre.org01/14/2021accepted70
713540011/19/2019VulD...securityfocus_classInput Validation Errorsecurityfocus.com11/19/2019accepted100
713539911/19/2019VulD...securityfocus_date1505779200 (09/19/2017)securityfocus.com11/19/2019accepted100
713539611/19/2019VulD...cve_assigned1489708800mitre.org11/19/2019accepted100
713538911/19/2019VulD...confirm_urlhttps://support.apple.com/HT208103support.apple.com11/19/2019accepted100
713538711/19/2019VulD...person_nicknameriusksk11/19/2019accepted100
713534311/19/2019VulD...discoverydate150577920011/19/2019accepted100
713542109/25/2017VulD...cvss3_nvd_basescore7.8nist.gov09/25/2017accepted90
713542009/25/2017VulD...0day_days109/25/2017accepted90
713541909/25/2017VulD...cvss3_vuldb_rcC09/25/2017accepted90
713541809/25/2017VulD...cvss3_vuldb_rlO09/25/2017accepted90
713541709/25/2017VulD...cvss3_vuldb_eX09/25/2017accepted90
713541609/25/2017VulD...cvss2_vuldb_rcC09/25/2017accepted90
713541509/25/2017VulD...cvss2_vuldb_rlOF09/25/2017accepted90
713541409/25/2017VulD...cvss2_vuldb_eND09/25/2017accepted90
713541309/25/2017VulD...seealso107068 107069 107070 107071 107073 107067 10747709/25/2017accepted100
713541209/25/2017VulD...openvas_familyGeneral09/25/2017accepted100

Might our Artificial Intelligence support you?

Check our Alexa App!