Fluorescence

**Nome do software vulnerável e versões afetadas** Componente Gráfico do Windows (versões afetadas não especificadas) **Descrição** O problema está relacionado a uma vulnerabilidade de elevação de privilégios que existe devido ao tratamento inadequado de objetos na memória pelo Componente Gráfico do Windows. Isso pode ser explorado por um invasor para elevar seus privilégios usando um aplicativo especialmente criado para esse fim. A vulnerabilidade pode ser acionada por meio de validação insuficiente de entradas. Há também uma menção a uma vulnerabilidade de escalonamento de privilégios do tipo “use-after-free” no Microsoft Windows DirectComposition. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para esta vulnerabilidade.

**Nome do software vulnerável e versões afetadas** Componente gráfico do Windows (versões afetadas não especificadas) **Descrição** O problema está relacionado a uma vulnerabilidade de elevação de privilégios que existe devido ao tratamento inadequado de objetos na memória pelo componente gráfico do Windows. Isso pode ser explorado por um invasor para elevar seus privilégios, possivelmente por meio de um aplicativo especialmente criado para esse fim. A vulnerabilidade pode estar relacionada a uma validação insuficiente de entradas. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para esta vulnerabilidade.

**Nome do software vulnerável e versões afetadas** Versões do kernel Linux 5.4.7 a 5.4.28 Versões do kernel Linux 5.5.0 a 5.5.13 Versões do kernel Linux 5.6.0 a 5.6.0 **Descrição** A vulnerabilidade está relacionada ao verificador bpf no kernel do Linux, que não restringiu adequadamente os limites do registro para operações de 32 bits, levando a leituras e gravações fora dos limites na memória do kernel. Este problema afeta a série estável do Linux 5.4 e versões mais recentes. A vulnerabilidade pode ser explorada para escalar privilégios, permitindo que um invasor obtenha acesso root. Existe um exploit funcional, mas ele ainda não foi divulgado publicamente. A vulnerabilidade está presente no subsistema eBPF, que permite a execução de manipuladores para rastreamento, análise de subsistemas e gerenciamento de tráfego dentro do kernel. **Recomendações** Para as versões do kernel Linux 5.4.7 a 5.4.28, atualize para a versão 5.4.29 ou posterior. Para as versões do kernel Linux 5.5.0 a 5.5.13, atualize para a versão 5.5.14 ou posterior. Para as versões do kernel Linux 5.6.0 a 5.6.0, atualize para a versão 5.6.1 ou posterior. Como solução alternativa temporária, considere restringir o acesso ao subsistema eBPF para minimizar o risco de exploração.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.13.5 **Description** The issue involves the "Windows Server" component and allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. This is due to a buffer overflow in memory. The exploitation of this issue may enable an attacker to execute arbitrary code with system privileges or cause a denial of service using a specially crafted application. **Recommendations** For macOS versions prior to 10.13.5, update to version 10.13.5 or later to resolve the issue. As a temporary workaround, consider restricting the use of the "Windows Server" component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Windows Server 2016 Windows 10 Windows 10 Servers **Description** An elevation of privilege issue exists due to the improper handling of objects in memory by the DirectX Graphics Kernel (DXGKRNL) driver. This allows attackers to affect the system. **Recommendations** For Windows Server 2016, update to a version that includes the fix for this issue. For Windows 10, update to a version that includes the fix for this issue. For Windows 10 Servers, update to a version that includes the fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to insufficient access control in the Win32k component of Windows operating systems, which can be exploited to elevate privileges using a specially crafted application. This can allow an attacker to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.2 macOS versions prior to 10.13.2 iCloud versions prior to 7.2 on Windows iTunes versions prior to 12.7.2 on Windows tvOS versions prior to 11.2 watchOS versions prior to 4.2 **Description** The issue involves the CFNetwork Session component and allows attackers to execute arbitrary code in a privileged context or cause a denial of service via a crafted app, resulting in memory corruption. **Recommendations** For iOS versions prior to 11.2, update to version 11.2 or later. For macOS versions prior to 10.13.2, update to version 10.13.2 or later. For iCloud versions prior to 7.2 on Windows, update to version 7.2 or later. For iTunes versions prior to 12.7.2 on Windows, update to version 12.7.2 or later. For tvOS versions prior to 11.2, update to version 11.2 or later. For watchOS versions prior to 4.2, update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.2 Safari versions prior to 11.0.2 iCloud versions prior to 7.2 on Windows iTunes versions prior to 12.7.2 on Windows tvOS versions prior to 11.2 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 11.2, update to version 11.2 or later. For Safari versions prior to 11.0.2, update to version 11.0.2 or later. For iCloud versions prior to 7.2 on Windows, update to version 7.2 or later. For iTunes versions prior to 12.7.2 on Windows, update to version 12.7.2 or later. For tvOS versions prior to 11.2, update to version 11.2 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 10.3.2 Apple Safari versions prior to 10.1.1 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 10.3.2, update to version 10.3.2 or later. For Safari versions prior to 10.1.1, update to version 10.1.1 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 10.3.2 Safari versions prior to 10.1.1 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 10.3.2, update to version 10.3.2 or later to resolve the issue. For Safari versions prior to 10.1.1, update to version 10.1.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.5 **Description** The issue is related to the WindowServer component and involves an out-of-bounds access in memory, which can be exploited by a remote attacker to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) using a specially crafted app. **Recommendations** For macOS versions prior to 10.12.5, update to version 10.12.5 or later to resolve the issue. As a temporary workaround, consider restricting the use of the WindowServer component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.5 **Description** The issue involves the `WindowServer` component and allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. This is due to a buffer overflow in the `WindowServer` component, which can be exploited by a remote attacker to achieve privilege escalation. **Recommendations** For macOS versions prior to 10.12.5, update to version 10.12.5 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `WindowServer` component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.5 **Description** The issue involves the WindowServer component and allows attackers to bypass intended memory-read restrictions via a crafted app. **Recommendations** For macOS versions prior to 10.12.5, update to version 10.12.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 11.4 Apple Safari versions prior to 11.1 Apple iCloud versions prior to 7.5 on Windows Apple iTunes versions prior to 12.7.5 on Windows Apple tvOS versions prior to 11.4 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 11.4, update to version 11.4 or later. For Safari versions prior to 11.1, update to version 11.1 or later. For iCloud versions prior to 7.5 on Windows, update to version 7.5 or later. For iTunes versions prior to 12.7.5 on Windows, update to version 12.7.5 or later. For tvOS versions prior to 11.4, update to version 11.4 or later.