8349 matches found
CVE-2022-46716
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. Private Relay functionality did not match system settings...
About the security content of iOS 15.7.5 and iPadOS 15.7.5
About the security content of iOS 15.7.5 and iPadOS 15.7.5 This document describes the security content of iOS 15.7.5 and iPadOS 15.7.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...
CVE-2023-28206
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6. An app may be able to execute arbitrary code with kernel privileges. App...
CVE-2023-28205
CVE-2023-28205 is a use-after-free vulnerability in WebKitGTK/WebKitGTK4 that can be triggered by processing malicious web content, leading to arbitrary code execution. The initial CVE entry notes a memory-management fix in Safari, iOS, iPadOS and macOS, with active exploitation reports. Connecte...
CVE-2023-28206
CVE-2023-28206 is an IOSurfaceAccelerator out-of-bounds write vulnerability in Apple’s iOS/macOS stack. The connected analysis documents an in-the-wild exploit chain targeting Safari IPC to escalate to GPU-process code execution, including a sequence of heap grooming and IPC misuse that yields ar...
CVE-2022-46717
Apple CVE-2022-46717 affects iOS 16.2 and iPadOS 16.2. A logic issue in accessibility features could allow a user with physical access to a locked Apple Watch to view photos. Root cause described as a logic issue with improved restrictions; remediation is patching in iOS 16.2 and iPadOS 16.2. Con...
CVE-2023-28205
A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report...
CVE-2023-28206
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6. An app may be able to execute arbitrary code with kernel privileges. App...
CVE-2022-46703
Summary : CVE-2022-46703 is an Apple security vulnerability described as a logic issue that could allow an app to read sensitive location information. Affected products/versions include iOS and iPadOS prior to the fixed releases, and macOS Ventura prior to 13.1; per sources, fixes are in iOS 15.7...
CVE-2022-46716
CVE-2022-46716 describes a logic issue in Apple’s Private Relay state management where Private Relay functionality did not match system settings. Affected products include macOS Ventura (fixed in 13.1) and iOS/iPadOS (fixed in 16.2). The Connected documents confirm this mismatch and provide the r...
CVE-2022-46717
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2. A user with physical access to a locked Apple Watch may be able to view user photos via accessibility features...
CVE-2022-46717
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2. A user with physical access to a locked Apple Watch may be able to view user photos via accessibility features...
CVE-2022-46703
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. An app may be able to read sensitive location information...
CVE-2023-28205
A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report...
Apple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write Vulnerability
Apple iOS, iPadOS, and macOS IOSurfaceAccelerator contain an out-of-bounds write vulnerability that allows an app to execute code with kernel privileges...
Apple Multiple Products WebKit Use-After-Free Vulnerability
Apple iOS, iPadOS, macOS, and Safari WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rel...
PT-2023-2613
Name of the Vulnerable Software and Affected Versions Safari versions prior to 16.4.1 iOS versions prior to 15.7.5 and prior to 16.4.1 iPadOS versions prior to 15.7.5 and prior to 16.4.1 macOS Ventura versions prior to 13.3.1 Description A use after free issue was addressed with improved memory...
About the security content of iOS 16.4.1 and iPadOS 16.4.1
About the security content of iOS 16.4.1 and iPadOS 16.4.1 This document describes the security content of iOS 16.4.1 and iPadOS 16.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...
Update now! Apple fixes actively exploited vulnerability and introduces new features
Apple has released security updates for several products. Most notably one of the updates fixes an actively exploited vulnerability in the WebKit component of iOS 15.7.4 and iPadOS 15.7.4 that was fixed earlier in macOS Ventura 13.2.1, iOS 16.3.1, iPadOS 16.3.1, and Safari 16.3. You can find the...
SUSE SLES12 Security Update : webkit2gtk3 (SUSE-SU-2023:1681-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:1681-1 advisory. - A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13, iOS 16.1 and iPadO...