Richard Zhu

**Name of the Vulnerable Software and Affected Versions** Tesla entertainment system (affected versions not specified) **Description** The issue concerns the renderer process in the entertainment system of Tesla Model 3 vehicles, which improperly handles JIT compilation. This mishandling allows attackers to execute firmware code and display crafted messages to vehicle occupants. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 66.0.1 Firefox ESR versions prior to 60.6.1 Thunderbird versions prior to 60.6.1 **Description** The issue is related to incorrect alias information in the IonMonkey JIT compiler for the Array.prototype.slice method, which may lead to a missing bounds check and a buffer overflow. This could allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For Firefox versions prior to 66.0.1, update to version 66.0.1 or later. For Firefox ESR versions prior to 60.6.1, update to version 60.6.1 or later. For Thunderbird versions prior to 60.6.1, update to version 60.6.1 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.13.5 **Description** The issue involves the "Windows Server" component and allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. This is due to a buffer overflow in memory. The exploitation of this issue may enable an attacker to execute arbitrary code with system privileges or cause a denial of service using a specially crafted application. **Recommendations** For macOS versions prior to 10.13.5, update to version 10.13.5 or later to resolve the issue. As a temporary workaround, consider restricting the use of the "Windows Server" component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** libvorbis (affected versions not specified) Firefox versions prior to 59.0.1 Firefox ESR versions prior to 52.7.2 Thunderbird versions prior to 52.7 **Description** The issue is related to an error in the libvorbis multimedia library, causing a read beyond the allocated buffer memory. This can be exploited by a remote attacker using specially crafted Vorbis audio data to cause a denial of service or compromise data confidentiality and integrity. The vulnerability was reported through the Pwn2Own contest and is associated with an out of bounds memory write while processing Vorbis audio data. **Recommendations** For libvorbis, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Firefox versions prior to 59.0.1, update to version 59.0.1 or later. For Firefox ESR versions prior to 52.7.2, update to version 52.7.2 or later. For Thunderbird versions prior to 52.7, update to version 52.7 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.2 macOS versions prior to 10.13.2 iCloud versions prior to 7.2 on Windows iTunes versions prior to 12.7.2 on Windows tvOS versions prior to 11.2 watchOS versions prior to 4.2 **Description** The issue involves the CFNetwork Session component and allows attackers to execute arbitrary code in a privileged context or cause a denial of service via a crafted app, resulting in memory corruption. **Recommendations** For iOS versions prior to 11.2, update to version 11.2 or later. For macOS versions prior to 10.13.2, update to version 10.13.2 or later. For iCloud versions prior to 7.2 on Windows, update to version 7.2 or later. For iTunes versions prior to 12.7.2 on Windows, update to version 12.7.2 or later. For tvOS versions prior to 11.2, update to version 11.2 or later. For watchOS versions prior to 4.2, update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.2 Safari versions prior to 11.0.2 iCloud versions prior to 7.2 on Windows iTunes versions prior to 12.7.2 on Windows tvOS versions prior to 11.2 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 11.2, update to version 11.2 or later. For Safari versions prior to 11.0.2, update to version 11.0.2 or later. For iCloud versions prior to 7.2 on Windows, update to version 7.2 or later. For iTunes versions prior to 12.7.2 on Windows, update to version 12.7.2 or later. For tvOS versions prior to 11.2, update to version 11.2 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 10.3.2 Safari versions prior to 10.1.1 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 10.3.2, update to version 10.3.2 or later to resolve the issue. For Safari versions prior to 10.1.1, update to version 10.1.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 10.3.2 Apple Safari versions prior to 10.1.1 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 10.3.2, update to version 10.3.2 or later. For Safari versions prior to 10.1.1, update to version 10.1.1 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.5 **Description** The issue involves the `WindowServer` component and allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. This is due to a buffer overflow in the `WindowServer` component, which can be exploited by a remote attacker to achieve privilege escalation. **Recommendations** For macOS versions prior to 10.12.5, update to version 10.12.5 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `WindowServer` component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.12.5 **Description** The issue involves the WindowServer component and allows attackers to bypass intended memory-read restrictions via a crafted app. **Recommendations** For macOS versions prior to 10.12.5, update to version 10.12.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 11.4 Apple Safari versions prior to 11.1 Apple iCloud versions prior to 7.5 on Windows Apple iTunes versions prior to 12.7.5 on Windows Apple tvOS versions prior to 11.4 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 11.4, update to version 11.4 or later. For Safari versions prior to 11.1, update to version 11.1 or later. For iCloud versions prior to 7.5 on Windows, update to version 7.5 or later. For iTunes versions prior to 12.7.5 on Windows, update to version 12.7.5 or later. For tvOS versions prior to 11.4, update to version 11.4 or later.