CVE-2015-7074

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 9.2 Apple OS X versions prior to 10.11.2 Apple tvOS versions prior to 9.1

Description The issue allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed media file. This is due to a buffer overflow in the CoreMedia Playback component.

Recommendations For Apple iOS versions prior to 9.2, update to version 9.2 or later. For Apple OS X versions prior to 10.11.2, update to version 10.11.2 or later. For Apple tvOS versions prior to 9.1, update to version 9.1 or later.