CVE-2015-5909 Information

Description

IDE Xcode Server in Apple Xcode before 7.0 does not properly restrict access to repository e-mail lists which allows remote attackers to obtain potentially sensitive build information in opportunistic circumstances by leveraging incorrect notification delivery.

Reference

http://lists.apple.com/archives/security-announce/2015/Sep/msg00002.html http://www.securitytracker.com/id/1033596 https://support.apple.com/HT205217