Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

APPLE-SA-03-25-2024-3 macOS Ventura 13.6.6

Related Vulnerabilities: CVE-2024-1580  
Source 
                							

                <!--X-Body-Begin-->
<!--X-User-Header-->
<a href="/fulldisclosure/"><img src="/images/fulldisclosure-logo.png" class="l-logo right" alt="fulldisclosure logo" width="80"></a>
<h2 class="m-list"><a href="/fulldisclosure/">Full Disclosure</a>
mailing list archives</h2>
<!--X-User-Header-End-->
<!--X-TopPNI-->
<div class="nav-bar">
<div class="nav-link">
<a href="38"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="date.html#39">By Date</a>
<a href="40"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
<div class="nav-link">
<a href="38"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="index.html#39">By Thread</a>
<a href="40"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
<form class="nst-search center" action="/search/fulldisclosure">
<input class="nst-search-q" name="q" type="search" placeholder="List Archive Search">
<button class="nst-search-button" title="Search">
<img style="width:100%;aspect-ratio:1/1;" alt="" aria-hidden="true" src="/shared/images/nst-icons.svg#search">
</button>
</form>

</div>

<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
<h1 class="m-title">APPLE-SA-03-25-2024-3 macOS Ventura 13.6.6</h1>
<hr>
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->


<em>From</em>: Apple Product Security via Fulldisclosure &lt;fulldisclosure () seclists org&gt;


<em>Date</em>: Mon, 25 Mar 2024 20:27:16 -0700


<!--X-Head-of-Message-End-->
<!--X-Head-Body-Sep-Begin-->
<hr>
<!--X-Head-Body-Sep-End-->
<!--X-Body-of-Message-->
<pre style="margin: 0em;">-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-03-25-2024-3 macOS Ventura 13.6.6

macOS Ventura 13.6.6 addresses the following issues.
Information about the security content is also available at
<a rel="nofollow" href="https://support.apple.com/kb/HT214095">https://support.apple.com/kb/HT214095</a>.

Apple maintains a Security Updates page at
<a rel="nofollow" href="https://support.apple.com/HT201222">https://support.apple.com/HT201222</a> which lists recent
software updates with security advisories.

CoreMedia
Available for: macOS Ventura
Impact: Processing an image may lead to arbitrary code execution
Description: An out-of-bounds write issue was addressed with improved
input validation.
CVE-2024-1580: Nick Galloway of Google Project Zero

WebRTC
Available for: macOS Ventura
Impact: Processing an image may lead to arbitrary code execution
Description: An out-of-bounds write issue was addressed with improved
input validation.
CVE-2024-1580: Nick Galloway of Google Project Zero

macOS Ventura 13.6.6 may be obtained from the Mac App Store or
Apple's Software Downloads web site:
<a rel="nofollow" href="https://support.apple.com/downloads/">https://support.apple.com/downloads/</a>
All information is also posted on the Apple Security Updates
web site: <a rel="nofollow" href="https://support.apple.com/HT201222">https://support.apple.com/HT201222</a>.

This message is signed with Apple's Product Security PGP key,
and details are available at:
<a rel="nofollow" href="https://www.apple.com/support/security/pgp/">https://www.apple.com/support/security/pgp/</a>.

-----BEGIN PGP SIGNATURE-----
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=k7Va
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the Full Disclosure mailing list
<a rel="nofollow" href="https://nmap.org/mailman/listinfo/fulldisclosure">https://nmap.org/mailman/listinfo/fulldisclosure</a>
Web Archives &amp; RSS: <a rel="nofollow" href="https://seclists.org/fulldisclosure/">https://seclists.org/fulldisclosure/</a>

</pre>
<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<hr>
<!--X-Follow-Ups-End-->
<!--X-References-->
<!--X-References-End-->
<!--X-BotPNI-->
<div class="nav-bar">
<div class="nav-link">
<a href="38"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="date.html#39">By Date</a>
<a href="40"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
<div class="nav-link">
<a href="38"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="index.html#39">By Thread</a>
<a href="40"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
</div>
<h3 class="m-thread">Current thread:</h3>
<ul class="thread">
<li><strong>APPLE-SA-03-25-2024-3 macOS Ventura 13.6.6</strong> <em>Apple Product Security via Fulldisclosure (Mar 27)</em>
</li></ul>


<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->
<p>

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started