7 matches found
CVE-2019-6213
CVE-2019-6213 is a kernel memory corruption vulnerability that could allow an attacker to execute arbitrary code with kernel privileges. Apple’s advisories (HT209447 for tvOS/iOS 12.1.2/12.1.3, HT209443 for iOS 12.1.3, and related Apple security notes) describe a memory corruption issue resolved ...
CVE-2019-6224
CVE-2019-6224 is an Apple FaceTime vulnerability where a buffer overflow in the FaceTime component could let a remote attacker initiate a call and cause arbitrary code execution. The issue is documented as a memory handling/validation problem and is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS...
CVE-2019-6214
CVE-2019-6214 is a type confusion issue in IOKit that can allow a sandboxed process to escape sandbox restrictions. The root cause is memory handling/initialization related to type handling in IOKit. Fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, and watchOS 5.1.3, per Apple security upd...
CVE-2019-6209
CVE-2019-6209 is an Apple kernel vulnerability affecting iOS, macOS, tvOS, and watchOS where an out-of-bounds read could disclose kernel memory layout. Root cause: insufficient input validation leading to a memory disclosure. Impact: a malicious application may determine kernel memory layout. Rem...
CVE-2019-6208
CVE-2019-6208 involves a memory initialization issue in Apple platforms. Apple fixed it in iOS 12.1.3, macOS Mojave 10.14.3, and tvOS 12.1.2, addressing memory corruption risks where a malicious or misbehaving sandboxed process could cause unexpected changes in memory shared between processes. Th...
CVE-2019-6210
CVE-2019-6210 is a kernel memory corruption vulnerability affecting Apple TV devices (4th generation and Apple TV 4K). The tvOS 12.1.2 entry describes it as a memory corruption issue fixed by improved input validation, while the iOS 12.1.3 page notes a fix for the kernel issue via improved lock s...
CVE-2019-6235
CVE-2019-6235 is an Apple memory-corruption issue fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3, and iTunes 12.9.3 for Windows. A sandboxed process may be able to circumvent sandbox restrictions. The fix is described as improved validation. Apple advisories HT209443/HT2094...