- Apple Os X 10.9 2 Mavericks For Mac Windows 10
- Apple Os X 10.9 2 Mavericks For Mac Free
- Apple Os X 10.9 2 Mavericks For Mac 2016
- Apple Os X 10.9 2 Mavericks For Mac Download
This update can be downloaded and installed using Software Update or from the Apple Support website.
OS X Mavericks (version 10.9) is the tenth major release of OS X (since June 2016 rebranded as macOS), Apple Inc.' S desktop and server operating system for Macintosh computers. OS X Mavericks was announced on June 10, 2013, at WWDC 2013, and was released on October 22, 2013 worldwide. May 26, 2020 If your Mac is using an earlier version of any Mac operating system, you should install the latest Apple software updates, which can include important security updates and updates for the apps installed by macOS, such as Safari, Books, Messages, Mail, Music, Calendar, and Photos. Apple Seeds OS X Mavericks 10.9.2 Build 13C53 to Developers Thursday February 6, 2014 2:58 PM PST by Juli Clover The release comes a week after the fourth OS X 10.9.2 beta, build 13C48, and over.
For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To learn more about Apple Product Security, see the Apple Product Security website.
For information about the Apple Product Security PGP Key, see How to use the Apple Product Security PGP Key.
Where possible, CVE IDs are used to reference the vulnerabilities for further information.
To learn about other Security Updates, see Apple Security Updates.
Note: OS X Mavericks 10.9.4 includes the security content of Safari 7.0.5.
OS X Mavericks v10.9.4 and Security Update 2014-003
- Certificate Trust PolicyAvailable for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks 10.9 to 10.9.3Impact: Update to the certificate trust policyDescription: The certificate trust policy was updated. The complete list of certificates may be viewed at http://support.apple.com/kb/HT6005.
- copyfileAvailable for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks 10.9 to 10.9.3Impact: Opening a maliciously crafted zip file may lead to an unexpected application termination or arbitrary code executionDescription: An out of bounds byte swapping issue existed in the handling of AppleDouble files in zip archives. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1370 : Chaitanya (SegFault) working with iDefense VCP
- curlAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: A remote attacker may be able to gain access to another user's sessionDescription: cURL re-used NTLM connections when more than one authentication method was enabled, which allowed an attacker to gain access to another user's session.CVE-IDCVE-2014-0015
- DockAvailable for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks 10.9 to 10.9.3Impact: A sandboxed application may be able to circumvent sandbox restrictionsDescription: An unvalidated array index issue existed in the Dock’s handling of messages from applications. A maliciously crafted message could cause an invalid function pointer to be dereferenced, which could lead to an unexpected application termination or arbitrary code execution.CVE-IDCVE-2014-1371 : an anonymous researcher working with HP's Zero Day Initiative
- Graphics DriverAvailable for: OS X Mountain Lion v10.8.5, OS X Mavericks 10.9 to 10.9.3Impact: A local user can read kernel memory, which can be used to bypass kernel address space layout randomizationDescription: An out-of-bounds read issue existed in the handling of a system call. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1372 : Ian Beer of Google Project Zero
- iBooks CommerceAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: An attacker with access to a system may be able to recover Apple ID credentialsDescription: An issue existed in the handling of iBooks logs. The iBooks process could log Apple ID credentials in the iBooks log where other users of the system could read it. This issue was addressed by disallowing logging of credentials.CVE-IDCVE-2014-1317 : Steve Dunham
- Intel Graphics DriverAvailable for: OS X Mountain Lion v10.8.5, OS X Mavericks 10.9 to 10.9.3Impact: A malicious application may be able to execute arbitrary code with system privilegesDescription: A validation issue existed in the handling of an OpenGL API call. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1373 : Ian Beer of Google Project Zero
- Intel Graphics DriverAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: A local user can read a kernel pointer, which can be used to bypass kernel address space layout randomizationDescription: A kernel pointer stored in an IOKit object could be retrieved from userland. This issue was addressed by removing the pointer from the object.CVE-IDCVE-2014-1375
Apple Os X 10.9 2 Mavericks For Mac Windows 10
- Intel ComputeAvailable for: OS X Mountain Lion v10.8.5, OS X Mavericks 10.9 to 10.9.3Impact: A malicious application may be able to execute arbitrary code with system privilegesDescription: A validation issue existed in the handling of an OpenCL API call. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1376 : Ian Beer of Google Project Zero
- IOAcceleratorFamilyAvailable for: OS X Mountain Lion v10.8.5, OS X Mavericks 10.9 to 10.9.3Impact: A malicious application may be able to execute arbitrary code with system privilegesDescription: An array indexing issue existed in IOAcceleratorFamily. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1377 : Ian Beer of Google Project Zero
- IOGraphicsFamilyAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: A local user can read a kernel pointer, which can be used to bypass kernel address space layout randomizationDescription: A kernel pointer stored in an IOKit object could be retrieved from userland. This issue was addressed by using a unique ID instead of a pointer.CVE-IDCVE-2014-1378
- IOReportingAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: A local user could cause an unexpected system restartDescription: A null pointer dereference existed in the handling of IOKit API arguments. This issue was addressed through additional validation of IOKit API arguments.CVE-IDCVE-2014-1355 : cunzhang from Adlab of Venustech
- launchdAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: A malicious application may be able to execute arbitrary code with system privilegesDescription: An integer underflow existed in launchd. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1359 : Ian Beer of Google Project Zero
- launchdAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: A malicious application may be able to execute arbitrary code with system privilegesDescription: A heap buffer overflow existed in launchd's handling of IPC messages. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1356 : Ian Beer of Google Project Zero
- launchdAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: A malicious application may be able to execute arbitrary code with system privilegesDescription: A heap buffer overflow existed in launchd's handling of log messages. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1357 : Ian Beer of Google Project Zero
Apple Os X 10.9 2 Mavericks For Mac Free
- launchdAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: A malicious application may be able to execute arbitrary code with system privilegesDescription: An integer overflow existed in launchd. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1358 : Ian Beer of Google Project Zero
- Graphics DriversAvailable for: OS X Mountain Lion v10.8.5, OS X Mavericks 10.9 to 10.9.3Impact: A malicious application may be able to execute arbitrary code with system privilegesDescription: Multiple null dereference issues existed in kernel graphics drivers. A maliciously crafted 32-bit executable may have been able to obtain elevated privileges.CVE-IDCVE-2014-1379 : Ian Beer of Google Project Zero
- Security - KeychainAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: An attacker may be able to type into windows under the screen lockDescription: Under rare circumstances, the screen lock did not intercept keystrokes. This could have allowed an attacker to type into windows under the screen lock. This issue was addressed through improved keystroke observer management.CVE-IDCVE-2014-1380 : Ben Langfeld of Mojo Lingo LLC
Apple Os X 10.9 2 Mavericks For Mac 2016
- Security - Secure TransportAvailable for: OS X Mountain Lion v10.8.5, OS X Mavericks 10.9 to 10.9.3Impact: Two bytes of memory could be disclosed to a remote attackerDescription: An uninitialized memory access issue existing in the handling of DTLS messages in a TLS connection. This issue was addressed by only accepting DTLS messages in a DTLS connection.CVE-IDCVE-2014-1361 : Thijs Alkemade of The Adium Project
Apple Os X 10.9 2 Mavericks For Mac Download
- ThunderboltAvailable for: OS X Mavericks 10.9 to 10.9.3Impact: A malicious application may be able to execute arbitrary code with system privilegesDescription: An out of bounds memory access issue existed in the handling of IOThunderBoltController API calls. This issue was addressed through improved bounds checking.CVE-IDCVE-2014-1381 : Sarah aka winocm
Entry updated February 3, 2020