Ned Williamson

**Name of the Vulnerable Software and Affected Versions** visionOS versions prior to 2 watchOS versions prior to 11 macOS Sequoia versions prior to 15 iOS versions prior to 18 iPadOS versions prior to 18 tvOS versions prior to 18 **Description** An integer overflow issue was addressed through improved input validation. Processing maliciously crafted web content may lead to an unexpected process crash. **Recommendations** For visionOS versions prior to 2, update to visionOS 2 to resolve the issue. For watchOS versions prior to 11, update to watchOS 11 to resolve the issue. For macOS Sequoia versions prior to 15, update to macOS Sequoia 15 to resolve the issue. For iOS versions prior to 18, update to iOS 18 to resolve the issue. For iPadOS versions prior to 18, update to iPadOS 18 to resolve the issue. For tvOS versions prior to 18, update to tvOS 18 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 117.0.5938.62 **Description** The issue is related to a use after free in WebRTC, allowing a remote attacker to potentially exploit heap corruption via a crafted HTML page. This could impact the confidentiality, integrity, and availability of data. **Recommendations** For versions prior to 117.0.5938.62, update to version 117.0.5938.62 or later to resolve the issue. As a temporary workaround, consider restricting access to WebRTC functionality until the update is applied.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13.4 iOS versions prior to 16.5 iPadOS versions prior to 16.5 libxml2 (affected versions not specified) **Description** The issue is related to multiple memory corruption problems, including a buffer overflow in the libxml2 library, which can be exploited by a remote attacker to cause a denial of service. The problem was addressed with improved input validation. **Recommendations** For macOS versions prior to 13.4, update to macOS Ventura 13.4. For iOS versions prior to 16.5, update to iOS 16.5. For iPadOS versions prior to 16.5, update to iPadOS 16.5. As a temporary workaround, consider restricting the use of the libxml2 library until a patch is available.

**Name of the Vulnerable Software and Affected Versions** macOS Ventura versions prior to 13.3 macOS Monterey versions prior to 12.6.4 iOS versions prior to 16.3.1 iPadOS versions prior to 16.3.1 macOS Big Sur versions prior to 11.7.5 **Description** A use after free issue was addressed with improved memory management. This issue may allow an app to execute arbitrary code with kernel privileges. **Recommendations** For macOS Ventura versions prior to 13.3, update to macOS Ventura 13.3. For macOS Monterey versions prior to 12.6.4, update to macOS Monterey 12.6.4. For iOS versions prior to 16.3.1, update to iOS 16.3.1. For iPadOS versions prior to 16.3.1, update to iPadOS 16.3.1. For macOS Big Sur versions prior to 11.7.5, update to macOS Big Sur 11.7.5.

**Name of the Vulnerable Software and Affected Versions** libxml2 versions prior to 2.10.3 **Description** An issue was discovered in libxml2 where certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked, which may allow a remote attacker to cause a denial of service. The vulnerability is related to the handling of objects with a dict structure, where the value of the first byte is zero. This issue can be exploited by a remote attacker to cause a denial of service. **Recommendations** For libxml2 versions prior to 2.10.3, update to version 2.10.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the XML PARSE HUGE function to minimize the risk of exploitation. Additionally, avoid using specially-crafted files that could provoke the double-free error until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** tvOS versions prior to 15.5 iOS versions prior to 15.5 iPadOS versions prior to 15.5 macOS Big Sur versions prior to 11.6.6 macOS Monterey versions prior to 12.4 watchOS versions prior to 8.6 macOS Catalina versions prior to Security Update 2022-004 **Description** A use after free issue was addressed with improved memory management. This issue allows an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For tvOS versions prior to 15.5, update to version 15.5 or later. For iOS versions prior to 15.5, update to version 15.5 or later. For iPadOS versions prior to 15.5, update to version 15.5 or later. For macOS Big Sur versions prior to 11.6.6, update to version 11.6.6 or later. For macOS Monterey versions prior to 12.4, update to version 12.4 or later. For watchOS versions prior to 8.6, update to version 8.6 or later. For macOS Catalina versions prior to Security Update 2022-004, apply Security Update 2022-004 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 12.1 watchOS versions prior to 8.3 iOS versions prior to 15.2 iPadOS versions prior to 15.2 tvOS versions prior to 15.2 **Description** A buffer overflow issue was addressed with improved memory handling. An attacker in a privileged network position may be able to execute arbitrary code. **Recommendations** For macOS versions prior to 12.1, update to macOS Monterey 12.1 or later. For watchOS versions prior to 8.3, update to watchOS 8.3 or later. For iOS versions prior to 15.2, update to iOS 15.2 or later. For iPadOS versions prior to 15.2, update to iPadOS 15.2 or later. For tvOS versions prior to 15.2, update to tvOS 15.2 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.15.3 **Description** A memory corruption issue was addressed with improved memory handling, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For versions prior to 10.15.3, update to macOS Catalina 10.15.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 13.3.1 iPadOS versions prior to 13.3.1 macOS Catalina versions prior to 10.15.3 tvOS versions prior to 13.3.1 watchOS versions prior to 6.1.2 **Description** A memory corruption issue was addressed with improved memory handling, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For iOS versions prior to 13.3.1, update to iOS 13.3.1 or later. For iPadOS versions prior to 13.3.1, update to iPadOS 13.3.1 or later. For macOS Catalina versions prior to 10.15.3, update to macOS Catalina 10.15.3 or later. For tvOS versions prior to 13.3.1, update to tvOS 13.3.1 or later. For watchOS versions prior to 6.1.2, update to watchOS 6.1.2 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 12.2 macOS Mojave versions prior to 10.14.4 tvOS versions prior to 12.2 watchOS versions prior to 5.2 **Description** A buffer overflow issue was addressed through improved size validation. This could allow a remote attacker to cause unexpected system termination or corrupt kernel memory. **Recommendations** For iOS versions prior to 12.2, update to iOS 12.2 or later. For macOS Mojave versions prior to 10.14.4, update to macOS Mojave 10.14.4 or later. For tvOS versions prior to 12.2, update to tvOS 12.2 or later. For watchOS versions prior to 5.2, update to watchOS 5.2 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 12.2 macOS Mojave versions prior to 10.14.4 tvOS versions prior to 12.2 watchOS versions prior to 5.2 **Description** A memory corruption issue was addressed with improved memory handling, which could allow a local user to read kernel memory. **Recommendations** For iOS versions prior to 12.2, update to iOS 12.2 or later. For macOS Mojave versions prior to 10.14.4, update to macOS Mojave 10.14.4 or later. For tvOS versions prior to 12.2, update to tvOS 12.2 or later. For watchOS versions prior to 5.2, update to watchOS 5.2 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 12.3 macOS Mojave versions prior to 10.14.5 tvOS versions prior to 12.3 watchOS versions prior to 5.2.1 **Description** A type confusion issue was addressed with improved memory handling. This issue may allow an application to cause unexpected system termination or write kernel memory. **Recommendations** For iOS versions prior to 12.3, update to iOS 12.3 or later. For macOS Mojave versions prior to 10.14.5, update to macOS Mojave 10.14.5 or later. For tvOS versions prior to 12.3, update to tvOS 12.3 or later. For watchOS versions prior to 5.2.1, update to watchOS 5.2.1 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 12.3 macOS Mojave versions prior to 10.14.5 tvOS versions prior to 12.3 watchOS versions prior to 5.2.1 **Description** A use-after-free issue was addressed with improved memory management. This issue allows a malicious application to execute arbitrary code with system privileges. The vulnerability is related to memory management and can be exploited by a malicious application. **Recommendations** For iOS versions prior to 12.3, update to iOS 12.3 or later. For macOS Mojave versions prior to 10.14.5, update to macOS Mojave 10.14.5 or later. For tvOS versions prior to 12.3, update to tvOS 12.3 or later. For watchOS versions prior to 5.2.1, update to watchOS 5.2.1 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 12.1.3 macOS Mojave versions prior to 10.14.3 tvOS versions prior to 12.1.2 watchOS versions prior to 5.1.3 **Description** A memory corruption issue was addressed with improved input validation. A malicious application may be able to execute arbitrary code with kernel privileges. **Recommendations** For iOS versions prior to 12.1.3, update to iOS 12.1.3 or later. For macOS Mojave versions prior to 10.14.3, update to macOS Mojave 10.14.3 or later. For tvOS versions prior to 12.1.2, update to tvOS 12.1.2 or later. For watchOS versions prior to 5.1.3, update to watchOS 5.1.3 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 70.0.3538.67 **Description** The issue is related to incorrect reference counting in the AppCache component of the Google Chrome web browser, which is associated with errors in access control for the isolated environment. Exploitation of this issue may allow a remote attacker to escape the sandbox and execute arbitrary code via a crafted HTML page. **Recommendations** For Google Chrome versions prior to 70.0.3538.67, update to version 70.0.3538.67 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 66.0.3359.117 Opera (affected versions not specified) **Description** The issue allows a remote attacker to execute arbitrary code via a crafted HTML page due to the re-entry of a destructor in the Networking Disk Cache. **Recommendations** For Google Chrome versions prior to 66.0.3359.117, update to version 66.0.3359.117 or later. For Opera, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 66.0.3359.117 Opera (affected versions not specified) **Description** A double-eviction in the Incognito mode cache led to a user-after-free in the Networking Disk Cache, allowing a remote attacker to execute arbitrary code via a crafted HTML page. **Recommendations** For Google Chrome versions prior to 66.0.3359.117, update to version 66.0.3359.117 or later to resolve the issue. For Opera, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 65.0.3325.146 Opera versions prior to 65.0.3325.146 **Description** The issue is related to incorrect IPC serialization in Skia, which allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. **Recommendations** For Google Chrome versions prior to 65.0.3325.146, update to version 65.0.3325.146 or later. For Opera versions prior to 65.0.3325.146, update to version 65.0.3325.146 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 63.0.3239.84 Opera (affected versions not specified) **Description** The issue is related to a heap buffer overflow in the Blob API, which can be exploited by a remote attacker using a crafted HTML page, potentially leading to heap corruption. This is also known as a Blink out-of-bounds read. **Recommendations** For Google Chrome versions prior to 63.0.3239.84, update to version 63.0.3239.84 or later to resolve the issue. For Opera, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 63.0.3239.84 Opera versions prior to 63.0.3239.84 **Description** The issue is related to an out-of-bounds write in the QUIC networking stack, allowing a remote attacker to gain code execution via a malicious server. **Recommendations** For Google Chrome versions prior to 63.0.3239.84, update to version 63.0.3239.84 or later. For Opera versions prior to 63.0.3239.84, update to a version that includes the fix for this issue, as the exact version is not specified.