The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, macOS Sonoma 14.2, watchOS 10.2, iOS 17.2 and iPadOS 17.2, tvOS 17.2. Processing web content may lead to arbitrary code execution.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2023/Dec/12 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2023/Dec/13 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2023/Dec/6 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2023/Dec/7 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2023/Dec/9 | Mailing List Third Party Advisory |
http://www.openwall.com/lists/oss-security/2023/12/18/1 | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/202401-33 | Third Party Advisory |
https://support.apple.com/en-us/HT214035 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT214036 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT214039 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT214040 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT214041 | Release Notes Vendor Advisory |
https://support.apple.com/kb/HT214039 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apple
Published: 2023-12-12T00:27:26.197Z
Updated: 2023-12-12T00:27:26.197Z
Reserved: 2023-09-14T19:05:11.460Z
Link: CVE-2023-42890
JSON object: View
NVD Information
Status : Modified
Published: 2023-12-12T01:15:11.480
Modified: 2024-06-12T10:15:26.693
Link: CVE-2023-42890
JSON object: View
Redhat Information
No data.
CWE