First published: Thu Mar 29 2018(Updated: )
WebKit. Multiple memory corruption issues were addressed with improved memory handling.
Credit: found by OSS-Fuzz found by OSS-Fuzz found by OSS-Fuzz found by OSS-Fuzz found by OSS-Fuzz found by OSS-Fuzz found by OSS-Fuzz product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iTunes for Windows | <12.8 | 12.8 |
Apple iTunes for Windows | <12.7.5 | 12.7.5 |
Apple Safari | <11.1 | 11.1 |
Apple iCloud for Windows | <7.4 | 7.4 |
Apple watchOS | <4.3 | 4.3 |
Apple tvOS | <11.3 | 11.3 |
Apple iOS | <11.3 | 11.3 |
Apple Safari | <11.1 | |
Apple iPhone OS | <11.3 | |
Apple tvOS | <11.3 | |
Apple watchOS | <4.3 | |
Apple iCloud | <7.4 | |
Apple iTunes | <12.7.4 | |
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)
(Found alongside the following vulnerabilities)
CVE-2018-4145 is a vulnerability in WebKit that allows for multiple memory corruption issues due to poor memory handling.
CVE-2018-4145 has a severity rating of 8.8, which is considered high.
Versions prior to iOS 11.3, tvOS 11.3, watchOS 4.3, Safari 11.1, iTunes 12.7.4 for Windows, and iCloud for Windows 7.4 are affected by CVE-2018-4145.
To fix CVE-2018-4145, update to the latest versions of iOS, tvOS, watchOS, Safari, iTunes for Windows, and iCloud for Windows.
You can find more information about CVE-2018-4145 on Apple's support website at the following links: [Link1](https://support.apple.com/kb/HT208693), [Link2](https://support.apple.com/kb/HT208695), [Link3](https://support.apple.com/kb/HT208696).