TTCSIRT-219.072519: TT-CSIRT Advisory – Apple Security Updates

TTCSIRT-219.072519: TT-CSIRT Advisory – Apple Security Updates

Apple has released a security update stating that it has discovered the following issues in iOS ver12.4:

a) A memory corruption issue where A remote attacker may be able to cause unexpected application termination or arbitrary code execution – (CVE-2019-8660).

b) An issue existed in Samba that may allow attackers to perform unauthorized actions by intercepting communications between services – (CVE-2018-16860).

c) An attacker may be able to trigger a use-after-free in an application deserializing an untrusted NSDictionary – (CVE-2019-8662).

Further information on these vulnerabilities and how they can be mitigated can be found on the Apple Website at https://support.apple.com/en-gb/HT210346