Mark Mentovai

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 10.1 Apple macOS versions prior to 10.12.1 Apple tvOS versions prior to 10.0.1 Apple watchOS versions prior to 3.1 **Description** The issue involves the AppleMobileFileIntegrity component and is related to security setting errors. It may allow a remote attacker to spoof signed code by using a matching team ID. **Recommendations** For iOS versions prior to 10.1, update to version 10.1 or later. For macOS versions prior to 10.12.1, update to version 10.12.1 or later. For tvOS versions prior to 10.0.1, update to version 10.0.1 or later. For watchOS versions prior to 3.1, update to version 3.1 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 10 Apple OS X versions prior to 10.12 Apple tvOS versions prior to 10 Apple watchOS versions prior to 3 **Description** The issue is related to the mishandling of signed disk images, allowing attackers to execute arbitrary code in a privileged context via a crafted app. **Recommendations** For Apple iOS versions prior to 10, update to version 10 or later. For Apple OS X versions prior to 10.12, update to version 10.12 or later. For Apple tvOS versions prior to 10, update to version 10 or later. For Apple watchOS versions prior to 3, update to version 3 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 9.1 Apple OS X versions prior to 10.11.1 **Description** A double free issue allows attackers to write to arbitrary files by using a crafted app that accesses `AtomicBufferedFile` descriptors. **Recommendations** For Apple iOS versions prior to 9.1, update to version 9.1 or later. For Apple OS X versions prior to 10.11.1, update to version 10.11.1 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 9.1 OS X versions prior to 10.11.1 **Description** The issue is related to the kernel's handling of virtual memory reuse, allowing attackers to cause a denial of service using a crafted app. **Recommendations** For iOS versions prior to 9.1, update to version 9.1 or later. For OS X versions prior to 10.11.1, update to version 10.11.1 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 8.3 Apple OS X versions prior to 10.10.3 Apple TV versions prior to 7.2 **Description** A race condition exists in the setreuid system-call implementation in the kernel, allowing attackers to cause a denial of service via a crafted app. **Recommendations** For Apple iOS versions prior to 8.3, update to version 8.3 or later. For Apple OS X versions prior to 10.10.3, update to version 10.10.3 or later. For Apple TV versions prior to 7.2, update to version 7.2 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 8.3 Apple OS X versions prior to 10.10.3 Apple TV versions prior to 7.2 **Description** The issue is related to the setreuid and setregid system-call implementations in the kernel, which do not properly perform privilege drops. This makes it easier for attackers to execute code with unintended user or group privileges via a crafted app. **Recommendations** For Apple iOS versions prior to 8.3, update to version 8.3 or later. For Apple OS X versions prior to 10.10.3, update to version 10.10.3 or later. For Apple TV versions prior to 7.2, update to version 7.2 or later.

**Name of the Vulnerable Software and Affected Versions** iWork in Apple iOS versions prior to 8.3 iWork in Apple OS X versions prior to 10.10.3 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service due to memory corruption via a crafted iWork file. **Recommendations** For iWork in Apple iOS versions prior to 8.3, update to version 8.3 or later. For iWork in Apple OS X versions prior to 10.10.3, update to version 10.10.3 or later.