Yonghwi Jin

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 16.2 iPadOS versions prior to 16.2 macOS Ventura versions prior to 13.1 **Description** An integer overflow issue was addressed through improved input validation, which could allow an app to break out of its sandbox. **Recommendations** For iOS versions prior to 16.2, update to iOS 16.2 or later. For iPadOS versions prior to 16.2, update to iPadOS 16.2 or later. For macOS Ventura versions prior to 13.1, update to macOS Ventura 13.1 or later.

**Name of the Vulnerable Software and Affected Versions** Safari versions prior to 16.1 iOS versions prior to 16.1 iPadOS versions prior to 16 macOS Ventura versions prior to 13 **Description** A use after free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to arbitrary code execution. **Recommendations** For Safari versions prior to 16.1, update to Safari 16.1 or later. For iOS versions prior to 16.1, update to iOS 16.1 or later. For iPadOS versions prior to 16, update to iPadOS 16 or later. For macOS Ventura versions prior to 13, update to macOS Ventura 13 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Monterey 12.4 macOS versions prior to Big Sur 11.6.6 macOS Catalina versions prior to Security Update 2022-004 **Description** A memory initialization issue was addressed, which may allow a malicious application to gain root privileges. **Recommendations** For macOS Catalina, apply Security Update 2022-004 to resolve the issue. For macOS Big Sur, update to version 11.6.6 or later to resolve the issue. For macOS Monterey, update to version 12.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to macOS Monterey 12.4 macOS versions prior to macOS Big Sur 11.6.6 macOS Catalina versions prior to Security Update 2022-004 **Description** A memory initialization issue was addressed, which may allow a malicious application to gain root privileges. **Recommendations** For macOS Catalina, apply Security Update 2022-004 to resolve the issue. For macOS Big Sur, update to version 11.6.6 to resolve the issue. For macOS Monterey, update to version 12.4 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 96.0.4664.45 **Description** The issue is related to a type confusion in the V8 JavaScript engine, which can lead to heap corruption. A remote attacker can potentially exploit this issue via a crafted HTML page, allowing them to disclose protected information. **Recommendations** For versions prior to 96.0.4664.45, update to version 96.0.4664.45 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 94.0.4606.81 Description: The issue is related to an inappropriate implementation in the Sandbox feature of Google Chrome, which could allow a remote attacker to potentially bypass site isolation via Windows. Recommendations: For Google Chrome versions prior to 94.0.4606.81, update to version 94.0.4606.81 or later to resolve the issue.