The kernel in Apple iOS before 6.1 and Apple TV before 5.2 does not properly validate copyin and copyout arguments, which allows local users to bypass intended pointer restrictions and access locations in the first kernel-memory page by specifying a length of less than one page.
References
Link | Resource |
---|---|
http://lists.apple.com/archives/security-announce/2013/Jan/msg00000.html | Vendor Advisory |
http://lists.apple.com/archives/security-announce/2013/Jan/msg00001.html | Vendor Advisory |
http://osvdb.org/89659 | |
http://support.apple.com/kb/HT5642 | Vendor Advisory |
http://support.apple.com/kb/HT5643 | Vendor Advisory |
http://www.securityfocus.com/bid/57595 |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2013-01-29 05:58
Updated : 2024-02-04 18:16
NVD link : CVE-2013-0964
Mitre link : CVE-2013-0964
CVE.ORG link : CVE-2013-0964
JSON object : View
Products Affected
apple
- iphone_os
- tvos
CWE
CWE-20
Improper Input Validation