About the security content of Apple TV 5.2.1

Learn more about the security content of Apple TV 5.2.1.

Apple TV 5.2.1

  • Apple TV

    Available for: Apple TV 2nd generation and later

    Impact: A local user may be able to execute unsigned code

    Description: A state management issue existed in the handling of Mach-O executable files with overlapping segments. This issue was addressed by refusing to load an executable with overlapping segments.

    CVE-ID

    CVE-2013-0977 : evad3rs

  • Apple TV

    Available for: Apple TV 2nd generation and later

    Impact: A local user may be able to determine the address of structures in the kernel

    Description: An information disclosure issue existed in the ARM prefetch abort handler. This issue was addressed by panicking if the prefetch abort handler is not being called from an abort context.

    CVE-ID

    CVE-2013-0978 : evad3rs

  • Apple TV

    Available for: Apple TV 2nd generation and later

    Impact: A local user may be able to execute arbitrary code in the kernel

    Description: The IOUSBDeviceFamily driver used pipe object pointers that came from userspace. This issue was addressed by performing additional validation of pipe object pointers.

    CVE-ID

    CVE-2013-0981 : evad3rs

Published Date: