PT-2023-4263 · Apple+8 · Ipados+13

Francisco Alonso

Published

2023-01-23

Updated

2024-01-05

CVE-2023-32393

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions WebKitGTK and WPE WebKit versions prior to those included in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3, and iPadOS 16.3

Description The issue is related to a buffer overflow in memory, which may allow a remote attacker to execute arbitrary code when processing web content. Improved memory handling has been implemented to address this issue.

Recommendations For versions prior to watchOS 9.3, update to watchOS 9.3 or later. For versions prior to tvOS 16.3, update to tvOS 16.3 or later. For versions prior to macOS Ventura 13.2, update to macOS Ventura 13.2 or later. For versions prior to iOS 16.3, update to iOS 16.3 or later. For versions prior to iPadOS 16.3, update to iPadOS 16.3 or later.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALSA-2023:6535

ALSA-2023:7055

BDU:2023-04578

CESA-2023_7055

CVE-2023-32393

DSA-5396-1

DSA-5396-2

OPENSUSE-SU-2023_3556-1

RHSA-2023:6535

RHSA-2023:7055

RHSA-2023_6535

RHSA-2023_7055

RHSA-2025:10364

SUSE-SU-2023:3556-1

SUSE-SU-2023:4209-1

SUSE-SU-2023:4211-1

SUSE-SU-2023:4339-1

USN-6264-1

Affected Products

Almalinux

Astra Linux

Centos

Debian

Linuxmint

Apple Macos

Red Hat

Suse

Ubuntu

Ios

Ipados

Macos Ventura

Tvos

Watchos

PT-2023-4263 · Apple+8 · Ipados+13

CVE-2023-32393

Weakness Enumeration

Related Identifiers

Affected Products

References · 98