CVE-2019-8830

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 13.3 Apple iOS version 12.4.4 and earlier Apple iPadOS versions prior to 13.3 Apple macOS versions prior to 10.15.2 Apple macOS Mojave versions without Security Update 2019-002 Apple macOS High Sierra versions without Security Update 2019-007 Apple tvOS versions prior to 13.3 Apple watchOS versions prior to 6.1.1 Apple watchOS version 5.3.4 and earlier

Description An out-of-bounds read issue was addressed with improved input validation. Processing malicious video via FaceTime may lead to arbitrary code execution.

Recommendations For iOS versions prior to 13.3, update to iOS 13.3 or later. For iOS version 12.4.4 and earlier, update to iOS 12.4.4 or later if updating to iOS 13.3 or later is not feasible. For iPadOS versions prior to 13.3, update to iPadOS 13.3 or later. For macOS versions prior to 10.15.2, update to macOS 10.15.2 or later. For macOS Mojave, apply Security Update 2019-002. For macOS High Sierra, apply Security Update 2019-007. For tvOS versions prior to 13.3, update to tvOS 13.3 or later. For watchOS versions prior to 6.1.1, update to watchOS 6.1.1 or later. For watchOS version 5.3.4 and earlier, update to watchOS 5.3.4 or later if updating to watchOS 6.1.1 or later is not feasible.