CVE-2014-1320: Infoleak
First published: Wed Apr 23 2014(Updated: )
IOKit in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 places kernel pointers into an object data structure, which makes it easier for local users to bypass the ASLR protection mechanism by reading unspecified attributes of the object.
Credit: product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| macOS Yosemite | <=10.9.2 | |
| macOS Yosemite | =10.9 | |
| macOS Yosemite | =10.9.1 | |
| Apple iPhone OS | <=7.1 | |
| Apple iPhone OS | =7.0 | |
| Apple iPhone OS | =7.0.1 | |
| Apple iPhone OS | =7.0.2 | |
| Apple iPhone OS | =7.0.3 | |
| Apple iPhone OS | =7.0.4 | |
| Apple iPhone OS | =7.0.5 | |
| Apple iPhone OS | =7.0.6 | |
| tvOS | <=6.1 | |
| tvOS | =6.0 | |
| tvOS | =6.0.1 | |
| tvOS | =6.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/type
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/apple
- canonical/macos yosemite
- version/macos yosemite/10.9.2
- version/macos yosemite/10.9
- version/macos yosemite/10.9.1
- canonical/apple iphone os
- version/apple iphone os/7.1
- version/apple iphone os/7.0
- version/apple iphone os/7.0.1
- version/apple iphone os/7.0.2
- version/apple iphone os/7.0.3
- version/apple iphone os/7.0.4
- version/apple iphone os/7.0.5
- version/apple iphone os/7.0.6
- canonical/tvos
- version/tvos/6.1
- version/tvos/6.0
- version/tvos/6.0.1
- version/tvos/6.0.2