Filippo Bigarella

**Name of the Vulnerable Software and Affected Versions** Apple OS X versions prior to 10.11.1 **Description** The issue allows local users to gain privileges by leveraging an unspecified type confusion during Mach task processing. **Recommendations** For Apple OS X versions prior to 10.11.1, update to version 10.11.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 9 **Description** The issue is caused by a buffer overflow in the IOMobileFrameBuffer function of the iOS operating system. This can be exploited by a local attacker to gain elevated privileges or cause a denial of service, resulting in memory corruption. **Recommendations** For iOS versions prior to 9, update to version 9 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS (affected versions not specified) **Description** The issue is caused by a buffer overflow in the IOKit component of the iOS operating system kernel. Exploitation of this issue may allow a remote attacker to execute arbitrary code with elevated privileges or cause a denial of service using a specially crafted application. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** iOS (affected versions not specified) **Description** The issue is caused by a buffer overflow in the IOKit component of the iOS operating system kernel. Exploitation of this issue may allow a remote attacker to execute arbitrary code with elevated privileges or cause a denial of service using a specially crafted application. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 9 **Description** The issue is caused by a buffer overflow in the Disk Images component of the iOS operating system. This can be exploited by a local attacker to gain elevated privileges or cause a denial of service, resulting in memory corruption. **Recommendations** For versions prior to 9, update to version 9 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 9 **Description** The issue is related to the IOAcceleratorFamily component in iOS, which is caused by a buffer overflow. This can allow a local attacker to gain privileges or cause a denial of service, resulting in memory corruption. **Recommendations** For versions prior to 9, update to iOS version 9 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS (affected versions not specified) **Description** The issue is caused by a buffer overflow in the IOKit component of the iOS operating system kernel. Exploitation of this issue may allow a remote attacker to execute arbitrary code with elevated privileges or cause a denial of service using a specially crafted application. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 7.1 Apple TV versions prior to 6.1 **Description** The issue is related to the CoreCapture component, which does not properly validate IOKit API calls. This allows attackers to cause a denial of service, resulting in an assertion failure and device crash, via a crafted app. **Recommendations** For Apple iOS versions prior to 7.1, update to version 7.1 or later. For Apple TV versions prior to 6.1, update to version 6.1 or later.