Posted by [CXSEC] on Dec 08

Hi @ll,

Today Apple fixed buffer overflow issue in LIBC/FTS (CVE-2015-7039).

Patch available for:
– OS X El Capitan v10.11 and v10.11.1
– iPhone 4s and later,
– Apple Watch Sport, Apple Watch, Apple Watch Edition, and Apple Watch
Hermes
– Apple TV (4th generation)

Impact: Processing a maliciously crafted package may lead to arbitrary
code execution
Description: Multiple buffer overflows existed in the C standard library.
These issues were…