CVE-2016-7639: An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before…

CVE-2016-7586 WebKitGTK+ vulnerabilities Title: WebKitGTK+ vulnerabilities Summary: Several security issues were fixed in WebKitGTK+. A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution. Instructions: This update uses a new upstream release, which includes additional bug fixes. After a standard system update you need to restart any applications that use WebKitGTK+, such as Epiphany, to make all the necessary changes.

CVE-2016-7639 [HIGH] CVE-2016-7639: iCloud for Windows 6.1 Apple Security Update: About the security content of iCloud for Windows 6.1 Product: iCloud for Windows Version: 6.1 CVE: CVE-2016-7639 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed through improved state management.

CVE-2016-7639 [HIGH] CVE-2016-7639: Safari 10.0.2 Apple Security Update: About the security content of Safari 10.0.2 Product: Safari Version: 10.0.2 CVE: CVE-2016-7639 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed through improved state management.

CVE-2016-7639 [HIGH] CVE-2016-7639: iTunes 12.5.4 for Windows Apple Security Update: About the security content of iTunes 12.5.4 for Windows Product: iTunes 12.5.4 for Windows CVE: CVE-2016-7639 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed through improved state management.

CVE-2016-7639 [HIGH] CVE-2016-7639: iOS 10.2 Apple Security Update: About the security content of iOS 10.2 Product: iOS Version: 10.2 CVE: CVE-2016-7639 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed through improved state management.

CVE-2016-7639 [HIGH] CVE-2016-7639: tvOS 10.1 Apple Security Update: About the security content of tvOS 10.1 Product: tvOS Version: 10.1 CVE: CVE-2016-7639 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed through improved state management.

CVE-2016-7639 [HIGH] CVE-2016-7639: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.2 is affected. ... An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Scope: local bookworm: resolved (fixed in 2.14.3-1) bullseye: resolved (fixed in 2.14.3-1) forky: resolved (fixed in 2.14.3-1) sid: resolved (fixed in 2.14.3-1) trixie: resolved (fixed in 2.14.3-1)

CVE-2016-7639 [HIGH] CWE-119 GHSA-7wrx-v7g3-3cj6: An issue was discovered in certain Apple products An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.

CVE-2016-7639 [HIGH] CVE-2016-7639: An issue was discovered in certain Apple products An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.

[HIGH] Palo Alto Networks Unit 42 Vulnerability Research December 2016 Disclosures Threat Research Center Threat Research Vulnerabilities ## Palo Alto Networks Unit 42 Vulnerability Research December 2016 Disclosures Unit 42 Published: December 16, 2016 Threat Research Vulnerabilities Adobe Flash ICloud ITunes Microsoft Office Safari As part of Unit 42’s ongoing threat research, we can now disclose that Palo Alto Networks Unit 42 researchers have reported six vulnerabilities that have been fixed by Apple, Adobe and Microsoft. This includes two vulnerabilities in Apple WebKit and impacts iCloud for Windows , Safari , iTunes for Windows , tvOS and iOS . CVE-2016-7639: Tongbo Luo CVE-2016-7642: Tongbo Luo This includes three code execution vulnerabilities affecting Adobe Flash (APSB16-39) . CVE-2016-7873: Tao Yan CVE-2016-7874: Tao Yan CVE-2016-7871: T

CVE-2016-7639 [HIGH] Palo Alto Networks Unit 42 Vulnerability Research December 2016 Disclosures As part of Unit 42’s ongoing threat research, we can now disclose that Palo Alto Networks Unit 42 researchers have reported six vulnerabilities that have been fixed by Apple, Adobe and Microsoft. This includes two vulnerabilities in Apple WebKit and impacts iCloud for Windows, Safari, iTunes for Windows, tvOS and iOS. 1. CVE-2016-7639: Tongbo Luo 2. CVE-2016-7642: Tongbo Luo This includes three code execution vulnerabilities affecting Adobe Flash (APSB16-39). 1. CVE-2016-7873: Tao Yan 2. CVE-2016-7874: Tao Yan 3. CVE-2016-7871: Tao Yan And this includes one memory corruption vulnerability affecting Microsoft Office for the Mac (MS16-148): 1. CVE-2016-7263: Jin Chen For current customers with a Threat Prevention subscription, Palo Alto Networks has also released IPS signatures provid