CVE-2019-8576
First published: Mon May 13 2019(Updated: )
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A local user may be able to cause unexpected system termination or read kernel memory.
Credit: Brandon Azad Google Project ZeroJunho Jang Hanul Choi LINE Security TeamBrandon Azad Google Project ZeroJunho Jang Hanul Choi LINE Security TeamBrandon Azad Google Project ZeroJunho Jang Hanul Choi LINE Security TeamBrandon Azad Google Project ZeroJunho Jang Hanul Choi LINE Security Team product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iPhone OS | <12.3 | |
| Apple Mac OS X | <10.14.5 | |
| Apple tvOS | <12.3 | |
| Apple watchOS | <5.2.1 | |
| Apple watchOS | <5.2.1 | 5.2.1 |
| Apple iOS | <12.3 | 12.3 |
| Apple tvOS | <12.3 | 12.3 |
| Apple macOS Mojave | <10.14.5 | 10.14.5 |
| Apple High Sierra | ||
| Apple Sierra |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT210118 (Advisory)
- https://support.apple.com/en-us/HT210119 (Advisory)
- https://support.apple.com/en-us/HT210120 (Advisory)
- https://support.apple.com/en-us/HT210122 (Advisory)
- https://support.apple.com/HT210118
- https://support.apple.com/HT210119
- https://support.apple.com/HT210120
- https://support.apple.com/HT210122
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2019-8593
- CVE-2019-8585
- CVE-2019-8592
- CVE-2019-8560
- CVE-2019-8605
- CVE-2019-8576
- CVE-2019-8591
- CVE-2019-8626
- CVE-2019-8613
- CVE-2019-8664
- CVE-2019-8573
- CVE-2019-8568
- CVE-2019-8637
- CVE-2019-8577
- CVE-2019-8600
- CVE-2019-8598
- CVE-2019-8602
- CVE-2019-8574
- CVE-2019-8607
- CVE-2019-8583
- CVE-2019-8601
- CVE-2019-8622
- CVE-2019-8623
- CVE-2019-8612
- CVE-2019-8620
- CVE-2019-8603
- CVE-2019-8635
- CVE-2019-8590
- CVE-2019-8640
- CVE-2019-2102
- CVE-2019-8582
- CVE-2019-8589
- CVE-2019-8634
- CVE-2019-8616
- CVE-2019-8629
- CVE-2018-4456
- CVE-2019-8606
- CVE-2019-8633
- CVE-2019-8525
- CVE-2019-8547
- CVE-2019-8631
- CVE-2018-12126
- CVE-2018-12127
- CVE-2018-12130
- CVE-2019-11091
- CVE-2019-8604
- CVE-2019-8569
- CVE-2019-6237
- CVE-2019-8571
- CVE-2019-8584
- CVE-2019-8586
- CVE-2019-8587
- CVE-2019-8594
- CVE-2019-8595
- CVE-2019-8596
- CVE-2019-8597
- CVE-2019-8608
- CVE-2019-8609
- CVE-2019-8610
- CVE-2019-8611
- CVE-2019-8615
- CVE-2019-8619
- CVE-2019-8628
- CVE-2019-8599
- CVE-2019-8617
- CVE-2019-8630
Frequently Asked Questions
What is CVE-2019-8576?
CVE-2019-8576 is a vulnerability in the kernel of Apple devices that allows a local user to cause unexpected system termination or read kernel memory.
What is the severity of CVE-2019-8576?
CVE-2019-8576 has a severity score of 7.1, which is considered high.
How does CVE-2019-8576 affect macOS Mojave 10.14.5?
CVE-2019-8576 affects macOS Mojave 10.14.5 and could allow a local user to cause unexpected system termination or read kernel memory.
How do I fix CVE-2019-8576 on iOS 12.3?
To fix CVE-2019-8576 on iOS 12.3, update to a version beyond 12.3 that includes the fix.
Where can I find more information about CVE-2019-8576?
More information about CVE-2019-8576 can be found on Apple's support pages: [reference 1], [reference 2], [reference 3].
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/apple-support
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/references
- agent/severity
- agent/event
- agent/weakness
- agent/author
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/apple
- canonical/apple watchos
- canonical/apple macos mojave
- canonical/apple high sierra
- canonical/apple sierra
- canonical/apple iphone os
- canonical/apple mac os x
- canonical/apple tvos
- canonical/apple ios