Cunzhang

**Name of the Vulnerable Software and Affected Versions** Apple OS X versions prior to 10.10 **Description** The issue allows attackers to cause a denial of service, specifically an out-of-bounds read operation, by using a crafted application. **Recommendations** For versions prior to 10.10, update to version 10.10 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 8 Apple TV versions prior to 7 **Description** The issue allows attackers to cause a denial of service, resulting in a NULL pointer dereference and device restart, via a crafted application. This is related to the IntelAccelerator driver in the IOAcceleratorFamily subsystem. **Recommendations** For Apple iOS versions prior to 8, update to version 8 or later to resolve the issue. For Apple TV versions prior to 7, update to version 7 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 8 Apple TV versions prior to 7 **Description** The issue is related to a heap-based buffer overflow in the IOHIDFamily component, allowing attackers to execute arbitrary code in a privileged context. This can be achieved via an application that provides crafted key-mapping properties. **Recommendations** For Apple iOS versions prior to 8, update to version 8 or later to resolve the issue. For Apple TV versions prior to 7, update to version 7 or later to resolve the issue.