Ryan Sleevi

**Name of the Vulnerable Software and Affected Versions** Mac OS X (affected versions not specified) **Description** The issue is caused by a buffer overflow in the ASN.1 decoder of the Mac OS X operating system. Exploitation of this issue may allow a remote attacker to execute arbitrary code or cause a denial of service (memory corruption) using a specially crafted certificate. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mozilla Network Security Services versions prior to 3.19.2.1 Mozilla Network Security Services versions 3.20.x prior to 3.20.1 Firefox versions prior to 42.0 Firefox ESR 38.x versions prior to 38.4 **Description** The issue is related to an integer overflow in the PL ARENA ALLOCATE implementation, which can cause a buffer overflow. This can allow a remote attacker to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash. **Recommendations** For Mozilla Network Security Services versions prior to 3.19.2.1, update to version 3.19.2.1 or later. For Mozilla Network Security Services versions 3.20.x prior to 3.20.1, update to version 3.20.1 or later. For Firefox versions prior to 42.0, update to version 42.0 or later. For Firefox ESR 38.x versions prior to 38.4, update to version 38.4 or later.

**Name of the Vulnerable Software and Affected Versions** Smack XMPP API versions prior to 4.0.0-rc1 **Description** The issue concerns the ServerTrustManager component, which fails to verify basicConstraints and nameConstraints in X.509 certificate chains from SSL servers. This allows attackers to spoof servers and obtain sensitive information via a crafted certificate chain. **Recommendations** For versions prior to 4.0.0-rc1, update to version 4.0.0-rc1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions prior to 10.7.4 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted X.509 certificate, due to libsecurity accessing uninitialized memory locations during certificate processing. **Recommendations** For versions prior to 10.7.4, update to version 10.7.4 or later to resolve the issue.