http://lists.apple.com/archives/security-announce/2016/May/msg00001.html

http://lists.apple.com/archives/security-announce/2016/May/msg00002.html

http://lists.apple.com/archives/security-announce/2016/May/msg00003.html

http://lists.apple.com/archives/security-announce/2016/May/msg00004.html

http://packetstormsecurity.com/files/137400/OS-X-IOAccelSharedUserClient2-page_off_resource-NULL-Pointer-Dereference.html

http://www.securityfocus.com/bid/90694

http://www.securitytracker.com/id/1035890

https://bugs.chromium.org/p/project-zero/issues/detail?id=778

https://support.apple.com/HT206564

https://support.apple.com/HT206566

https://support.apple.com/HT206567

https://support.apple.com/HT206568

https://www.exploit-db.com/exploits/39924/

CWE-476

NVD-CWE-Other

OR
     *cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions up to (including) 9.3.1

OR
     *cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions up to (excluding) 9.3.2

OR
     *cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to (including) 10.11.4

OR
     *cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to (excluding) 10.11.5

OR
     *cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* versions up to (including) 9.2

OR
     *cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* versions up to (excluding) 9.2.1

OR
     *cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* versions up to (including) 2.2

OR
     *cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* versions up to (excluding) 2.2.1

http://lists.apple.com/archives/security-announce/2016/May/msg00001.html Vendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00001.html Mailing List, Vendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00002.html Vendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00002.html Mailing List, Vendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00003.html Vendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00003.html Mailing List, Vendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00004.html Vendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00004.html Mailing List, Vendor Advisory

http://packetstormsecurity.com/files/137400/OS-X-IOAccelSharedUserClient2-page_off_resource-NULL-Pointer-Dereference.html No Types Assigned

http://packetstormsecurity.com/files/137400/OS-X-IOAccelSharedUserClient2-page_off_resource-NULL-Pointer-Dereference.html Third Party Advisory, VDB Entry

http://www.securityfocus.com/bid/90694 No Types Assigned

http://www.securityfocus.com/bid/90694 Third Party Advisory, VDB Entry

http://www.securitytracker.com/id/1035890 No Types Assigned

http://www.securitytracker.com/id/1035890 Third Party Advisory, VDB Entry

https://bugs.chromium.org/p/project-zero/issues/detail?id=778 No Types Assigned

https://bugs.chromium.org/p/project-zero/issues/detail?id=778 Exploit, Third Party Advisory

https://www.exploit-db.com/exploits/39924/ No Types Assigned

https://www.exploit-db.com/exploits/39924/ Exploit, Third Party Advisory, VDB Entry

<a href="http://cwe.mitre.org/data/definitions/476.html">CWE-476: NULL Pointer Dereference</a>

<a href="http://cwe.mitre.org/data/definitions/476.html" rel="nofollow">CWE-476: NULL Pointer Dereference</a>

OR
     *cpe:2.3:o:apple:apple_tv:*:*:*:*:*:*:*:* versions from (including) 9.2

OR
     *cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* versions from (including) 9.2

http://www.securitytracker.com/id/1035890 [No Types Assigned]

https://www.exploit-db.com/exploits/39924/ [No Types Assigned]

http://www.securityfocus.com/bid/90694 [No Types Assigned]

Configuration 1
     OR
          *cpe:2.3:o:apple:iphone_os:9.3.1:*:*:*:*:*:*:* (and previous)
Configuration 2
     OR
          *cpe:2.3:o:apple:mac_os_x:10.11.4:*:*:*:*:*:*:* (and previous)
Configuration 3
     OR
          *cpe:2.3:o:apple:watchos:2.2:*:*:*:*:*:*:* (and previous)
Configuration 4
     OR
          *cpe:2.3:o:apple:apple_tv:9.2:*:*:*:*:*:*:* (and previous)

Configuration 1
     OR
          *cpe:2.3:o:apple:watchos:2.2:*:*:*:*:*:*:* (and previous)
Configuration 2
     OR
          *cpe:2.3:o:apple:iphone_os:9.3.1:*:*:*:*:*:*:* (and previous)
Configuration 3
     OR
          *cpe:2.3:o:apple:mac_os_x:10.11.4:*:*:*:*:*:*:* (and previous)
Configuration 4
     OR
          *cpe:2.3:o:apple:apple_tv:9.2:*:*:*:*:*:*:* (and previous)

El método IOAccelSharedUserClient2::page_off_resource en Apple iOS en versiones anteriores a 9.3.2, OS X en versiones anteriores a 10.11.5, tvOS en versiones anteriores a 9.2.1 y watchOS en versiones anteriores a 2.2.1 permite a atacantes ejecutar código arbitrario en un contexto privilegiado o causar una denegación de servicio (referencia a puntero NULL) a través de una app manipulada.

IOAcceleratorFamily en Apple iOS en versiones anteriores a 9.3.2, OS X en versiones anteriores a 10.11.5, tvOS en versiones anteriores a 9.2.1 y watchOS en versiones anteriores a 2.2.1 permite a atacantes ejecutar código arbitrario en un contexto privilegiado o causar una denegación de servicio (referencia a puntero NULL) a través de una app manipulada.

IOAcceleratorFamily in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.

The IOAccelSharedUserClient2::page_off_resource method in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.

http://packetstormsecurity.com/files/137400/OS-X-IOAccelSharedUserClient2-page_off_resource-NULL-Pointer-Dereference.html

https://bugs.chromium.org/p/project-zero/issues/detail?id=778

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

NVD-CWE-Other

Configuration 1
     OR
          *cpe:2.3:o:apple:iphone_os:9.3.1:*:*:*:*:*:*:* (and previous)
Configuration 2
     OR
          *cpe:2.3:o:apple:mac_os_x:10.11.4:*:*:*:*:*:*:* (and previous)
Configuration 3
     OR
          *cpe:2.3:o:apple:watchos:2.2:*:*:*:*:*:*:* (and previous)
Configuration 4
     OR
          *cpe:2.3:o:apple:apple_tv:9.2:*:*:*:*:*:*:* (and previous)

http://lists.apple.com/archives/security-announce/2016/May/msg00001.html No Types Assigned

http://lists.apple.com/archives/security-announce/2016/May/msg00001.html Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00002.html No Types Assigned

http://lists.apple.com/archives/security-announce/2016/May/msg00002.html Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00003.html No Types Assigned

http://lists.apple.com/archives/security-announce/2016/May/msg00003.html Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00004.html No Types Assigned

http://lists.apple.com/archives/security-announce/2016/May/msg00004.html Advisory

https://support.apple.com/HT206564 No Types Assigned

https://support.apple.com/HT206564 Advisory

https://support.apple.com/HT206566 No Types Assigned

https://support.apple.com/HT206566 Advisory

https://support.apple.com/HT206567 No Types Assigned

https://support.apple.com/HT206567 Advisory

https://support.apple.com/HT206568 No Types Assigned

https://support.apple.com/HT206568 Advisory

<a href="http://cwe.mitre.org/data/definitions/476.html">CWE-476: NULL Pointer Dereference</a>