CVE-2019-8656
Summary
This was addressed with additional checks by Gatekeeper on files mounted through a network share. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. Extracting a zip file containing a symbolic link to an endpoint in an NFS mount that is attacker controlled may bypass Gatekeeper.
- LOW
- LOCAL
- HIGH
- UNCHANGED
- REQUIRED
- NONE
- NONE
- NONE
References
Advisory Timeline
- Published
