Opera-Aklajn

**Name of the Vulnerable Software and Affected Versions** Quill versions prior to 0.7.1 **Description** Quill, a tool for mac binary signing and notarization, is susceptible to a denial-of-service condition. The issue stems from unbounded reads of HTTP response bodies during the Apple notarization process. Exploitation requires the ability to modify API responses from Apple’s notarization service, which is typically prevented by HTTPS with proper TLS certificate validation. However, environments with TLS-intercepting proxies, compromised certificate authorities, or other trust boundary violations are at risk. When processing HTTP responses, Quill reads the entire response body into memory without a size limit. An attacker controlling the response content can send an arbitrarily large payload, leading to memory exhaustion and a crash of the Quill client. The impact is limited to availability, with no effect on confidentiality or integrity. Both the Quill CLI and library are affected when used for notarization operations. **Recommendations** Update to Quill version 0.7.1 or later.

**Name of the Vulnerable Software and Affected Versions** Quill versions prior to 0.7.1 **Description** Quill, a tool for Mac binary signing and notarization, has an issue where it can allocate an excessive amount of memory when processing Mach-O binaries. This occurs because the software doesn't properly validate size and count fields when parsing these files. An attacker can provide a specially crafted, small Mach-O binary with inflated size values in fields like `DataSize`, `DataOffset`, `Size`, `Count`, and `Length`. This causes Quill to attempt to allocate a large amount of memory, leading to memory exhaustion and a denial of service, potentially crashing the process. The Quill CLI and Go library are both affected when handling untrusted Mach-O files. The vulnerability is triggered when parsing Mach-O binaries, specifically when reading from the `LC CODE SIGNATURE` load command and embedded code signing structures such as `SuperBlob` and `BlobIndex`. **Recommendations** Versions prior to 0.7.1 should be updated to version 0.7.1 or later.

**Name of the Vulnerable Software and Affected Versions** Quill versions prior to 0.7.1 **Description** Quill, a tool for macOS binary signing and notarization, contains a Server-Side Request Forgery (SSRF) issue when retrieving Apple notarization submission logs. Exploitation requires the ability to modify responses from Apple’s notarization service, which is typically prevented by HTTPS and TLS certificate validation. However, environments with TLS-intercepting proxies, compromised certificate authorities, or other trust boundary violations are at risk. When fetching submission logs, Quill retrieves a URL from the API response without validating the scheme (e.g., `https`) or the host address. An attacker capable of manipulating the response can provide an arbitrary URL, causing the Quill client to make HTTP or HTTPS requests to attacker-controlled or internal network destinations. This could potentially lead to the exposure of sensitive data, such as cloud provider credentials or internal service responses. Both the Quill command-line interface (CLI) and library are affected when used to retrieve notarization submission logs. **Recommendations** Update to Quill version 0.7.1 or later.