First published: Wed Dec 05 2018(Updated: )
A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.
Credit: An independent security researcher has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
tvOS | <12.1.1 | 12.1.1 |
macOS Mojave | <10.14.2 | 10.14.2 |
macOS High Sierra | ||
macOS High Sierra | ||
Apple iOS, iPadOS, and watchOS | <5.1.2 | 5.1.2 |
Apple iOS and iPadOS | <12.1.1 | 12.1.1 |
iPhone OS | <12.1.1 | |
Apple iOS and macOS | <10.14.2 | |
tvOS | <12.1.1 | |
Apple iOS, iPadOS, and watchOS | <5.1.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2018-4431 is a vulnerability related to a memory initialization issue in the kernel of Apple devices.
CVE-2018-4431 affects iOS versions prior to 12.1.1, macOS Mojave versions prior to 10.14.2, tvOS versions prior to 12.1.1, and watchOS versions prior to 5.1.2.
The severity of CVE-2018-4431 is medium with a severity value of 5.5.
To fix CVE-2018-4431, update your device to iOS 12.1.1 or later, macOS Mojave 10.14.2 or later, tvOS 12.1.1 or later, or watchOS 5.1.2 or later.
You can find more information about CVE-2018-4431 on the Apple support page: [link](https://support.apple.com/kb/HT209340).