An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, iOS 16.4 and iPadOS 16.4, watchOS 9.4. Processing an image may result in disclosure of process memory.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT213670 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213674 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213676 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213678 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213670 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213674 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213676 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213678 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 08:23
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.apple.com/en-us/HT213670 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/HT213674 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/HT213676 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/HT213678 - Release Notes, Vendor Advisory |
17 Jan 2024, 20:51
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* |
|
CWE | CWE-125 | |
References | () https://support.apple.com/en-us/HT213674 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/HT213676 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/HT213678 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/HT213670 - Release Notes, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
First Time |
Apple
Apple iphone Os Apple macos Apple ipados Apple watchos Apple tvos |
10 Jan 2024, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-10 22:15
Updated : 2024-11-21 08:23
NVD link : CVE-2023-42862
Mitre link : CVE-2023-42862
CVE.ORG link : CVE-2023-42862
JSON object : View
Products Affected
apple
- iphone_os
- ipados
- macos
- tvos
- watchos
CWE
CWE-125
Out-of-bounds Read