CVE-2022-46694

CVE-2022-46694 affects Apple devices via an out-of-bounds write triggered by parsing a malicious video file. Public documents consistently describe the root cause as improper input validation in the video parsing path, leading to potential kernel code execution. Affected software/hardware are App...

CVE-2022-42842

The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. A remote user may be able to cause kernel code execution...

CVE-2022-42842

CVE-2022-42842 affects Apple platforms and is tied to a kernel memory handling issue that could allow remote code execution. The CVE is listed among Apple TV vulnerabilities in the Apple TV 16.2 and related macOS/iOS/watchOS updates as fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1...

PT-2022-26624 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.1 Description: An out-of-bounds write issue was addressed with improved input validation, allowing an app to potentially execute arbitrary code with kernel privileges. Recommendations: For versions prior to 13.1,...

VulnCheck KEV: CVE-2022-46694

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, iOS 15.7.2 and iPadOS 15.7.2, tvOS 16.2, watchOS 9.2. Parsing a maliciously crafted video file may lead to kernel code execution...

About the security content of tvOS 16.2

About the security content of tvOS 16.2 This document describes the security content of tvOS 16.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

AMD Radeon 缓冲区错误漏洞

AMD Radeon is a device driver and utility package for Advanced Micro Devices graphics cards and GPUs from UltraMicro Semiconductor AMD. A security vulnerability exists in AMD Radeon that stems from an insufficient validation of missing size checks in LoadModule, which could lead to out-of-bounds...

CVE-2022-42832

A race condition was addressed with improved locking. This issue is fixed in iOS 16.1 and iPadOS 16, macOS Ventura 13. An app with root privileges may be able to execute arbitrary code with kernel privileges...

CVE-2022-42827

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, iOS 16.1 and iPadOS 16. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively...

CVE-2022-42808

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 16.1, iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. A remote user may be able to cause kernel code execution...

CVE-2022-42808

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 16.1, iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. A remote user may be able to cause kernel code execution...

CVE-2022-32934

The issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. A remote user may be able to cause kernel code execution...

CVE-2022-32934

The issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. A remote user may be able to cause kernel code execution...

CVE-2022-32898

The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7 and iPadOS 15.7, iOS 16, macOS Ventura 13, watchOS 9. An app may be able to execute arbitrary code with kernel privileges...

Code injection

The issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. A remote user may be able to cause kernel code execution...

Design/Logic Flaw

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 16.1, iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. A remote user may be able to cause kernel code execution...

CVE-2022-42808

CVE-2022-42808 is an out-of-bounds write in Apple's kernel that could allow a remote attacker to achieve kernel code execution. Affected products include tvOS, iOS, iPadOS, macOS Ventura, and watchOS, with fixed versions: tvOS 16.1, iOS 16.1, iPadOS 16, macOS Ventura 13, and watchOS 9.1. The vuln...

CVE-2022-32934

The issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. A remote user may be able to cause kernel code execution...

CVE-2022-32934

The issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. A remote user may be able to cause kernel code execution...

CVE-2022-42808

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 16.1, iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. A remote user may be able to cause kernel code execution...