CVE-2022-22675 Out-of-bounds write issue fixed in tvOS 15.5, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.3.1, iOS 15.4.1, and iPadOS 15.4.1

CVE-2022-22675 Out-of-bounds write issue fixed in tvOS 15.5, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.3.1, iOS 15.4.1, and iPadOS 15.4.1

This issue is fixed in iOS 15.4.1, watchOS 8.6, tvOS 15.5 and macOS High Sierra 10.13.5. An out-of-bounds read issue exists when processing URLs in Safari. This issue is fixed in iOS 15.4.1 and Safari 12.0. Apple has received reports that some users have been unable to set up a new device because the Setup Assistant may stop and show a “device can not be setup” alert.

Apple has fixed this issue and the Setup Assistant now continues to the “Set up your device” step. An out-of-bounds read issue exists when processing push notifications. This issue is fixed in iOS 15.4.1, macOS 10.13.5, tvOS 15.5, watchOS 8.6 and macOS High Sierra 10.13.5. An out-of-bounds read issue exists when parsing unicode characters. This issue is fixed in iOS 15.4.1, macOS High Sierra 10.13.5 and Safari 12.0. An out-of-bounds write issue exists when parsing malformed URLs. This issue is fixed in iOS 15.4.1, macOS High Sierra 10.13.5 and Safari 12.0. An out-of-bounds read issue exists when parsing HTML5 fragments. This issue is fixed in iOS 15.4.1, macOS High Sierra 10.13

Combined updates for Safari, iOS and tvOS

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe