PT-2024-36371 · Apple+9 · Visionos+16

Chluo

+2

·

Published

2024-12-11

·

Updated

2025-02-26

·

CVE-2024-54508

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions: watchOS versions prior to 11.2 visionOS versions prior to 2.2 tvOS versions prior to 18.2 macOS Sequoia versions prior to 15.2 Safari versions prior to 18.2 iOS versions prior to 18.2 iPadOS versions prior to 18.2
Description: The issue was addressed with improved memory handling. Processing maliciously crafted web content may lead to an unexpected process crash.
Recommendations: For watchOS versions prior to 11.2, update to watchOS 11.2 or later. For visionOS versions prior to 2.2, update to visionOS 2.2 or later. For tvOS versions prior to 18.2, update to tvOS 18.2 or later. For macOS Sequoia versions prior to 15.2, update to macOS Sequoia 15.2 or later. For Safari versions prior to 18.2, update to Safari 18.2 or later. For iOS versions prior to 18.2, update to iOS 18.2 or later. For iPadOS versions prior to 18.2, update to iPadOS 18.2 or later.

Fix

Buffer Overflow

Weakness Enumeration

CWE-119

Related Identifiers

ALSA-2025:0145
ALSA-2025:0146
BDU:2025-04540
CESA-2025_0145
CVE-2024-54508
DLA-4009-1
DSA-5835-1
INFSA-2025_0145
INFSA-2025_0146
OPENSUSE-SU-2025_0043-1
OPENSUSE-SU-2025_0096-1
RHSA-2025:0145
RHSA-2025:0146
RHSA-2025:0226
RHSA-2025:0276
RHSA-2025:0277
RHSA-2025:0278
RHSA-2025:0279
RHSA-2025:0282
RHSA-2025:0283
RHSA-2025:10364
RHSA-2025_0145
RHSA-2025_0146
RLSA-2025:0145
SUSE-SU-2025:0043-1
SUSE-SU-2025:0096-1
SUSE-SU-2025:0104-1
SUSE-SU-2025:0735-1
USN-7201-1

Affected Products

Almalinux
Astra Linux
Centos
Debian
Linuxmint
Apple Macos
Red Hat
Rocky Linux
Safari
Suse
Ubuntu
Ios
Ipados
Macos Sequoia
Tvos
Visionos
Watchos