First published: Mon May 13 2019(Updated: )
An input validation issue was addressed with improved input validation. This issue is fixed in iOS 12.3, watchOS 5.2.1. Processing a maliciously crafted message may lead to a denial of service.
Credit: natashenka Google Project Zeronatashenka Google Project Zero product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iPhone OS | <12.3 | |
Apple watchOS | <5.2.1 | |
Apple watchOS | <5.2.1 | 5.2.1 |
Apple iOS | <12.3 | 12.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID for this issue is CVE-2019-8664.
The severity of CVE-2019-8664 is medium (6.5).
The affected software for CVE-2019-8664 includes iOS versions up to (but not including) 12.3 and watchOS versions up to (but not including) 5.2.1.
Processing a maliciously crafted message may lead to a denial of service.
You can fix CVE-2019-8664 by updating to iOS 12.3 or watchOS 5.2.1, depending on the affected software.