CVE-2015-1117

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 8.3 Apple OS X versions prior to 10.10.3 Apple TV versions prior to 7.2

Description The issue is related to the setreuid and setregid system-call implementations in the kernel, which do not properly perform privilege drops. This makes it easier for attackers to execute code with unintended user or group privileges via a crafted app.

Recommendations For Apple iOS versions prior to 8.3, update to version 8.3 or later. For Apple OS X versions prior to 10.10.3, update to version 10.10.3 or later. For Apple TV versions prior to 7.2, update to version 7.2 or later.