Apple Security Advisory 2022-10-24-4

Apple Security Advisory 2022-10-24-4: Posted Oct 31, 2022; Authored by Apple | Site apple.com; Apple Security Advisory 2022-10-24-4 - macOS Big Sur 11.7.1 addresses code execution vulnerabilities.; tags | advisory, vulnerability, code execution; systems | apple; advisories | CVE-2022-28739, CVE-2022-32862, CVE-2022-42825; SHA-256 | 694b71d70356f5154be176f0559497188550b37befabaf5a842d401e39ae2f50; Download | Favorite | View

Apple Security Advisory 2022-10-24-4

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2022-10-24-4 macOS Big Sur 11.7.1

macOS Big Sur 11.7.1 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT213493.

AppleMobileFileIntegrity
Available for: macOS Big Sur
Impact: An app may be able to modify protected parts of the file
system
Description: This issue was addressed by removing additional
entitlements.
CVE-2022-42825: Mickey Jin (@patch1t)

Ruby
Available for: macOS Big Sur
Impact: A remote user may be able to cause unexpected app termination
or arbitrary code execution
Description: A memory corruption issue was addressed by updating Ruby
to version 2.6.10.
CVE-2022-28739

Sandbox
Available for: macOS Big Sur
Impact: An app with root privileges may be able to access private
information
Description: This issue was addressed with improved data protection.
CVE-2022-32862: an anonymous researcher

macOS Big Sur 11.7.1 may be obtained from the Mac App Store or
Apple's Software Downloads web site:
https://support.apple.com/downloads/
All information is also posted on the Apple Security Updates
web site: https://support.apple.com/en-us/HT201222.

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

All information is also posted on the Apple Security Updates
web site: https://support.apple.com/en-us/HT201222.

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEBP+4DupqR5Sgt1DB4RjMIDkeNxkFAmNW2esACgkQ4RjMIDke
NxmiUQ//YtLnZPmpsIseSDtqn8Qkfk8jQdnTaH6ki2bpqu8Pzedc6+7m/8+WMYbj
Tqh1wmAB0GeHVmMWqSucP4iHfRYtxXHeOsROD9Yu5kvuL9IA2yDOELr5Tk/sSgQE
M1kg+/fWCzi3kCrUS2UIoSp7yYbTar01MSACY2TnKZk5pkFQ/NRpQzae20TwoTNP
LhgUHHXdIXzYzkVdTmPqyjSFkGKQwE0nED2zBlXYSK7gmN2E8r44+k22AcYYTUCr
X5z8i/TcLdVXmN34pHNaixr0N3I/qbVMOuzf1EaYNksIxJJOd6ba5ANck1trGfLG
X8ndc6Q9CIqViUazvcHw87PZxozgRFEfPLmDc3Kxa6nT9EKYgCnc6mJEkdPWrhS0
s8rEpFGyIxXxnu11Ydf6U0u5nRfP2dSkgTORpUv4Ft/2mXonCBHtRZw6DrSU+vnx
jThTTtZNHU6qUdbS8G/ihvL5IvEQGJe427AytDSvgkbG/FRM4yG2KCYky/y8bM/I
bVVzQdP2YiQ1NBRTWaMMuUlYwisEm5KuKLDbkyzt77SKCzrFICNE1jzHfKOCapax
PFppf45BKm8qPhBZp93mCSDOHb4EWn4e25tITs+h0gBVP3E4EiEklD4tPaG/b8Sg
FVD5YoB5a5oCZzUtaO0Pwk5WjJOsM3m10rFACCxgNDwPJP6LrLM=
=1btW
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 272 files
Ubuntu 60 files
Debian 19 files
Gentoo 8 files
Apple 5 files
Google Security Research 4 files
Jann Horn 3 files
Spencer McIntyre 3 files
LiquidWorm 3 files
Pierre Kim 2 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,172)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,112)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,459)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,018)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

Apple Security Advisory 2022-10-24-4

Apple Security Advisory 2022-10-24-4

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Apple Security Advisory 2022-10-24-4

Share This

Apple Security Advisory 2022-10-24-4

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems