First published: Mon Mar 25 2019(Updated: )
Kernel. An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation.
Credit: derrek @derrekr6 derrek @derrekr6 derrek @derrekr6 derrek @derrekr6 derrek @derrekr6 product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS Mojave | <10.14.4 | 10.14.4 |
Apple High Sierra | ||
Apple Sierra | ||
Apple tvOS | <12.2 | 12.2 |
Apple iPhone OS | <12.2 | |
Apple Mac OS X | >=10.12.6<10.14.5 | |
Apple watchOS | <5.2 | |
Apple Mac OS X | >=10.14.3<10.14.4 | |
Apple iOS | <12.2 | 12.2 |
Apple watchOS | <5.2 | 5.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2019-8547 is a vulnerability that allows an attacker to read kernel memory out-of-bounds.
The severity of CVE-2019-8547 is critical, with a severity value of 9.8.
The affected software versions include iOS up to version 12.2, macOS Mojave up to version 10.14.5, High Sierra, Sierra, watchOS up to version 5.2, and macOS Mojave up to version 10.14.4.
CVE-2019-8547 is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, watchOS 5.2, macOS Mojave 10.14.4.
You can find more information about CVE-2019-8547 on the Apple support website at the following URLs: [https://support.apple.com/en-us/HT209599](https://support.apple.com/en-us/HT209599), [https://support.apple.com/en-us/HT210119](https://support.apple.com/en-us/HT210119), [https://support.apple.com/en-us/HT209600](https://support.apple.com/en-us/HT209600).