First published: Mon May 13 2019(Updated: )
SQLite. A memory corruption issue was addressed by removing the vulnerable code.
Credit: Omer Gull Checkpoint ResearchOmer Gull Checkpoint ResearchOmer Gull Checkpoint ResearchOmer Gull Checkpoint ResearchOmer Gull Checkpoint Research product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
tvOS | <12.3 | 12.3 |
macOS Mojave | <10.14.5 | 10.14.5 |
macOS High Sierra | ||
macOS High Sierra | ||
Apple iOS, iPadOS, and watchOS | <5.2.1 | 5.2.1 |
iTunes | <12.9.5 | 12.9.5 |
Apple iOS and iPadOS | <12.3 | 12.3 |
iCloud for Windows | <7.12 | |
iCloud for Windows | >=10.0<10.4 | |
iTunes | <12.9.5 | |
Safari | <12.1.1 | |
iPhone OS | <12.3 | |
Apple iOS and macOS | <10.14.5 | |
tvOS | <12.3 | |
Apple iOS, iPadOS, and watchOS | <5.2.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID is CVE-2019-8602.
The severity of CVE-2019-8602 is high.
The affected software versions include iTunes for Windows 12.9.5, watchOS 5.2.1, iCloud for Windows 7.12, and more. Please refer to the vendor's security bulletin for a complete list.
A malicious application may be able to elevate privileges.
The vulnerability is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, and iCloud for Windows 7.12. Upgrade to the latest version of the affected software to mitigate the vulnerability.