First published: Tue Oct 30 2018(Updated: )
ICU. A memory corruption issue was addressed with improved input validation.
Credit: Erik Verbruggen The Qt CompanyErik Verbruggen The Qt CompanyErik Verbruggen The Qt CompanyErik Verbruggen The Qt CompanyErik Verbruggen The Qt Company product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iTunes for Windows | <12.9.1 | 12.9.1 |
Apple iPhone OS | <12.1 | |
Apple Mac OS X | <10.14.1 | |
Apple tvOS | <12.1 | |
Apple watchOS | <5.1 | |
Apple iTunes | <12.9.1 | |
Microsoft Windows | ||
Apple watchOS | <5.1 | 5.1 |
Apple iOS | <12.1 | 12.1 |
Apple tvOS | <12.1 | 12.1 |
Apple macOS Mojave | <10.14.1 | 10.14.1 |
Apple High Sierra | ||
Apple Sierra |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2018-4394 is a memory corruption vulnerability in ICU that was fixed with improved input validation.
Versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1, iTunes 12.9.1 are affected by CVE-2018-4394.
CVE-2018-4394 has a severity rating of 7.8 (high).
To fix CVE-2018-4394, update to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1, or iTunes 12.9.1, depending on the affected software.
You can find more information about CVE-2018-4394 on the Apple support page: [link](https://support.apple.com/en-us/HT209193).