CVE-2014-1381
Thunderbolt in Apple OS X before 10.9.4 does not properly restrict IOThunderBoltController API calls, which allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted call.
Date published : 2014-07-01
http://archives.neohapsis.com/archives/bugtraq/2014-06/0172.html