Apple · Libsecurity · CVE-2012-0654
**Name of the Vulnerable Software and Affected Versions**
Apple Mac OS X versions prior to 10.7.4
**Description**
The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted X.509 certificate, due to libsecurity accessing uninitialized memory locations during certificate processing.
**Recommendations**
For versions prior to 10.7.4, update to version 10.7.4 or later to resolve the issue.