CVE-2019-8756

Name of the Vulnerable Software and Affected Versions libxml2 versions prior to the version included in macOS Catalina 10.15 macOS versions prior to 10.15 iOS versions prior to 13 iCloud for Windows versions prior to 7.14 and 10.7 tvOS versions prior to 13 watchOS versions prior to 6 iTunes for Windows versions prior to 12.10.1

Description The issue arises from multiple memory corruption problems that have been addressed through improved input validation. Attackers can exploit vulnerabilities in libxml2 related to input validation to cause memory corruption.

Recommendations For libxml2, update to a version included in the latest macOS, iOS, or other affected products. For macOS, update to version 10.15 or later. For iOS, update to version 13 or later. For iCloud for Windows, update to version 7.14 or 10.7 or later. For tvOS, update to version 13 or later. For watchOS, update to version 6 or later. For iTunes for Windows, update to version 12.10.1 or later.