| 2019-12-18 | CVE-2019-8657 | Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation. | 8.8 |
| 2019-12-18 | CVE-2019-8649 | Cross-site Scripting vulnerability in Apple products
A logic issue existed in the handling of synchronous page loads. | 6.1 |
| 2019-12-18 | CVE-2019-8648 | Out-of-bounds Write vulnerability in Apple products
A memory corruption issue was addressed with improved input validation. | 9.8 |
| 2019-12-18 | CVE-2019-8646 | Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation. | 7.5 |
| 2019-12-18 | CVE-2019-8644 | Use After Free vulnerability in Apple products
Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
| 2019-12-18 | CVE-2019-8641 | Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation. | 9.8 |
| 2019-12-11 | CVE-2019-14899 | A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream. | 7.4 |
| 2019-10-03 | CVE-2019-15166 | Classic Buffer Overflow vulnerability in multiple products
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks. | 7.5 |
| 2019-10-03 | CVE-2018-16451 | Out-of-bounds Read vulnerability in multiple products
The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN. | 7.5 |
| 2019-10-03 | CVE-2018-16230 | Out-of-bounds Read vulnerability in multiple products
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI). | 7.5 |