CVE-2020-3842
First published: Tue Jan 28 2020(Updated: )
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.
Credit: Ned Williamson Google Project ZeroXiaolong Bai Min (Spark) Zheng Alibaba IncLuyi Xing Indiana University BloomingtonNed Williamson Google Project ZeroCorellium Ned Williamson Google Project ZeroNed Williamson Google Project Zero product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple tvOS | <13.3.1 | 13.3.1 |
| Apple iOS | <13.3.1 | 13.3.1 |
| Apple iPadOS | <13.3.1 | 13.3.1 |
| Apple macOS Catalina | <10.15.3 | 10.15.3 |
| Apple Mojave | ||
| Apple High Sierra | ||
| Apple watchOS | <6.1.2 | 6.1.2 |
| Apple iPadOS | <13.3.1 | |
| Apple iPhone OS | <13.3.1 | |
| Apple Mac OS X | <10.15.3 | |
| Apple tvOS | <13.3.1 | |
| Apple watchOS | <6.1.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT210918 (Advisory)
- https://support.apple.com/en-us/HT210919 (Advisory)
- https://support.apple.com/en-us/HT210920 (Advisory)
- https://support.apple.com/en-us/HT210921 (Advisory)
- https://support.apple.com/HT210918
- https://support.apple.com/HT210919
- https://support.apple.com/HT210920
- https://support.apple.com/HT210921
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2020-3857
- CVE-2020-3869
- CVE-2020-3855
- CVE-2020-3826
- CVE-2020-3870
- CVE-2020-3878
- CVE-2020-3880
- CVE-2020-3837
- CVE-2019-8836
- CVE-2020-3840
- CVE-2020-3875
- CVE-2020-3872
- CVE-2020-3836
- CVE-2020-3842
- CVE-2020-3858
- CVE-2020-3831
- CVE-2020-3853
- CVE-2020-3860
- CVE-2020-3846
- CVE-2020-3856
- CVE-2020-3829
- CVE-2020-3873
- CVE-2020-3859
- CVE-2020-3844
- CVE-2020-3828
- CVE-2020-3841
- CVE-2020-3874
- CVE-2020-3862
- CVE-2020-3825
- CVE-2020-3868
- CVE-2020-3867
- CVE-2020-3864
- CVE-2020-3865
- CVE-2020-3843
- CVE-2020-3838
- CVE-2020-3877
- CVE-2019-11043
- CVE-2020-3866
- CVE-2020-3848
- CVE-2020-3849
- CVE-2020-3850
- CVE-2020-3847
- CVE-2020-3835
- CVE-2020-3863
- CVE-2020-9774
- CVE-2020-3827
- CVE-2020-3845
- CVE-2020-3851
- CVE-2020-3871
- CVE-2020-3830
- CVE-2020-3854
- CVE-2019-18634
- CVE-2020-3839
- CVE-2020-3834
Frequently Asked Questions
What is CVE-2020-3842?
CVE-2020-3842 is a memory corruption issue in the Kernel that was addressed with improved memory handling.
Which software is affected by CVE-2020-3842?
CVE-2020-3842 affects multiple software products, including Apple watchOS, tvOS, iOS, iPadOS, macOS Catalina, Mojave, and High Sierra.
What is the severity of CVE-2020-3842?
The severity of CVE-2020-3842 is not specified in the information provided.
How can I fix CVE-2020-3842?
To fix CVE-2020-3842, you should update your affected software products to the versions specified in the vendor's official remediation document.
Where can I find more information about CVE-2020-3842?
You can find more information about CVE-2020-3842 in the official Apple support documents: [link1], [link2], [link3].
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/apple-support
- alias/CVE-2020-3858
- agent/software-canonical-lookup-request
- alias/CVE-2020-3871
- collector/nvd-index
- vendor/apple
- canonical/apple ios
- canonical/apple ipados
- canonical/apple macos catalina
- canonical/apple mojave
- canonical/apple high sierra
- canonical/apple tvos
- canonical/apple watchos
- canonical/apple iphone os
- canonical/apple mac os x