Apple Tv 9.2.2 Overflow Obtain Information Vulnerability
23 Dec. 2016
Summary
Buffer overflow in FontParser in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory via a crafted font file.
Vulnerable Systems:
* Apple Tv 9.2.2
* Apple Iphone Os 9.3.5
* Apple Mac Os X 10.11.6
* Apple Watch Os 2.2.2
Processing a maliciously crafted font may result in the disclosure of process memory. A buffer overflow existed in the handling of font files. This issue was addressed through improved bounds checking.