Daybreaker

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.2 **Description** The issue involves the CoreCapture component and allows local users to cause a denial of service (NULL pointer dereference) via unspecified vectors. It is related to pointer dereference errors in the CoreCapture component of the Mac OS X operating system. **Recommendations** For macOS versions prior to 10.12.2, update to version 10.12.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the CoreCapture component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.2 **Description** The issue involves the `Bluetooth` component and allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app. It is related to pointer dereference errors in the Bluetooth component of the Mac OS X operating system. Exploitation of the issue may allow a remote attacker to cause a denial of service (NULL pointer dereference) using a specially crafted application. **Recommendations** For macOS versions prior to 10.12.2, update to version 10.12.2 or later to resolve the issue. As a temporary workaround, consider disabling the `Bluetooth` component until a patch is available. Restrict access to the `Bluetooth` functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 10.2 macOS versions prior to 10.12.2 watchOS versions prior to 3.1.3 **Description** The issue involves the `IOHIDFamily` component and allows attackers to execute arbitrary code in a privileged context or cause a denial of service (use-after-free) via a crafted app. This is related to the use of memory after it has been freed, which can be exploited by an attacker to achieve the aforementioned outcomes. **Recommendations** For iOS versions prior to 10.2, update to version 10.2 or later to resolve the issue. For macOS versions prior to 10.12.2, update to version 10.12.2 or later to resolve the issue. For watchOS versions prior to 3.1.3, update to version 3.1.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.2 **Description** The issue involves the CoreStorage component and allows local users to cause a denial of service (NULL pointer dereference) via unspecified vectors. It is related to errors in pointer dereferencing. **Recommendations** For versions prior to 10.12.2, update to version 10.12.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the CoreStorage component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.2 **Description** The issue is related to the AppleGraphicsPowerManagement component and involves errors in pointer dereferencing. Exploitation of this issue can allow a local attacker to cause a denial of service (NULL pointer dereference) via unspecified vectors. **Recommendations** For macOS versions prior to 10.12.2, update to version 10.12.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the AppleGraphicsPowerManagement component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.2 **Description** The issue involves the `Intel Graphics Driver` component and allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. This is due to a buffer overflow in memory, which can be exploited by a remote attacker to achieve the aforementioned effects. **Recommendations** For macOS versions prior to 10.12.2, update to version 10.12.2 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `Intel Graphics Driver` component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 10.2 macOS versions prior to 10.12.2 watchOS versions prior to 3.1.3 **Description** The issue involves the `Disk Images` component and allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. This is caused by a buffer overflow in the `Disk Images` component, which can be exploited by a remote attacker to achieve the aforementioned effects. **Recommendations** For iOS versions prior to 10.2, update to version 10.2 or later. For macOS versions prior to 10.12.2, update to version 10.12.2 or later. For watchOS versions prior to 3.1.3, update to version 3.1.3 or later. As a temporary workaround, consider restricting the use of the `Disk Images` component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Intel Graphics Driver versions prior to 10.12 **Description** The issue is caused by a buffer overflow in memory, allowing a remote attacker to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) using a specially crafted application. **Recommendations** For versions prior to 10.12, update to version 10.12 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple OS X versions prior to 10.11.5 **Description** The issue is related to the AMD subsystem in the operating system, which lacks protection of internal data. This can be exploited by a remote attacker using a specially crafted application to access protected information in the kernel memory. The exploitation allows attackers to obtain sensitive kernel memory-layout information. **Recommendations** For Apple OS X versions prior to 10.11.5, update to version 10.11.5 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive kernel memory-layout information until a patch is applied.