CVE-2020-9870

Related Files

PAC Bypass Due To Unprotected Function Pointer Imports

Posted Aug 19, 2020

Authored by saelo, Google Security Research

PAC aims to prevent an attacker with the ability to read and write memory from executing arbitrary code. It does that by cryptographically signing and validating code pointers (as well as some data pointers) at runtime. However, it seems that imports of function pointers from shared libraries in userspace are not properly protected by PAC, allowing an attacker to sign arbitrary pointers and thus bypass PAC.

tags | advisory, arbitrary

advisories | CVE-2020-9870

SHA-256 | 5678bd6488f4650c38c54830ecab44a07b651b61fd1c0a35953bf286d640cfe7

Download | Favorite | View

Apple Security Advisory 2020-07-15-2

Posted Jul 17, 2020

Authored by Apple | Site apple.com

Apple Security Advisory 2020-07-15-2 - macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra are now available and address buffer overflow, code execution, denial of service, out of bounds read, and out of bounds write vulnerabilities.

tags | advisory, denial of service, overflow, vulnerability, code execution

systems | apple

advisories | CVE-2019-14899, CVE-2019-19906, CVE-2019-20807, CVE-2020-9799, CVE-2020-9864, CVE-2020-9865, CVE-2020-9866, CVE-2020-9870, CVE-2020-9878, CVE-2020-9884, CVE-2020-9885, CVE-2020-9888, CVE-2020-9889, CVE-2020-9890, CVE-2020-9891, CVE-2020-9913, CVE-2020-9918, CVE-2020-9934, CVE-2020-9936

SHA-256 | d95f20b4b23c2ac341545e9ac3c0ad384f7d69ead6709de54e59fc3a7be604a5

Download | Favorite | View