Security issues fixed in IOS 9.3.3 & MAC OS X El Capitan v10.11.6 are released on July 18, 2016. These releases are mostly bug fixes in kernel and and other supporting areas to close loop hole for unauthorized access and running code , cause Denial of service and potential memory corruptions issues.
Here are the security issues fixed in IOS 9.3.3
- Calendar – maliciously crafted calendar invite may cause a device to unexpectedly restart
- CoreGraphics – A remote attacker may be able to execute arbitrary code
- FaceTime – An attacker in a privileged network position may be able to cause a relayed call to continue transmitting audio while appearing as if the call terminated
- ImageIO – A remote attacker may be able to cause a denial of service and execute arbitrary code
- IOAcceleratorFamily – A local user may be able to read kernel memory and A local user may be able to execute arbitrary code with kernel privileges
- IOHIDFamily – A local user may be able to execute arbitrary code with kernel privileges
- Kernel memory corruption issues & denial of service by a local user.
- libxml2 Multiple memory corruption issues, Parsing a maliciously crafted XML document may lead to disclosure of user information
- libxslt Multiple memory corruption issues
- Safari Allowing malicious websiteds to display arbitory url and content when redirect happens to a invalid port.
- Siri Contacts Private contact information is accessible to person with a physical access of device.
- Web Media URL of the video is displayed outside of Private Browsing mode when Viewing a video in Safari’s Private Browsing mode displays the
- WebKit Visiting a maliciously crafted website may result in the disclosure of process memory & image data from another website, compromise user information & may lead to arbitrary code execution, user interface spoofing, system denial of service
- WebKit JavaScript Bindings Malicious website visit may lead to script execution in the context of a non-HTTP service
- WebKit Page Loading A malicious website may exfiltrate data cross-origin and may lead to arbitrary code execution
Complete details at – https://support.apple.com/en-us/HT206902
OS X El Capitan v10.11.6 Security and Performance Update
Here are the area in which security issues are fixed in OS X El Capitan v10.11.6 , these are bug fixes in kernel and and other supporting areas to close loop hole for unauthorized access and running code , cause Denial of service and potential memory corruptions issues.
Following areas are updated to close security loopholes.
- Audio
- bsdiff
- CFNetwork
- CoreGraphics
- FaceTime
- Graphics Drivers
- ImageIO
- Intel Graphics Driver
- IOHIDFamily
- IOSurface
- Kernel
- libc++abi
- libexpat
- LibreSSL
- libxml2
- libxslt
- Login Window
- OpenSSL
- QuickTime
- Safari Login AutoFill
- Sandbox Profiles
Complete details at – https://support.apple.com/en-us/HT206903
Performance Update for OS X El Capitan v10.11.6
- Resolves an issue that may prevent settings from being saved in accounts with parental controls enabled.
- Resolves an issue that prevented some network devices, such as speakers and multifunction printers, from accessing SMB share points.
- Improves startup time when connecting to a NetBoot server.
- Resolves an issue that may prevent startup from a NetBoot image created with an OS X v10.11.4 or OS X v10.11.5 installer.
- Resolves an issue that may cause Active Directory authentication to take longer than expected.