CVE-2022-26775: Input Validation

First published: Mon May 16 2022(Updated: )

AMD. A buffer overflow issue was addressed with improved memory handling.

Credit: Max Shavrick @_mxms the Google Security TeamArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftWojciech Reguła @_r3ggi SecuRingZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZubair Ashraf CrowdstrikeCVE-2022-0778 CVE-2022-23308 Paul Walker BuryNathaniel Ekoniak Ennate TechnologiesMickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Gergely Kalman @gergely_kalman Mandiant MandiantJoshua Mason MandiantAntonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) Ron Waisberg SecuRingan anonymous researcher SecuRing Perception PointRon Hass @ronhass7 Perception Pointryuzaki Chijin Zhou ShuiMuYuLin LtdTsinghua wingtecher lab Jeonghoon Shin TheoriSorryMybad @S0rryMybad Kunlun LabDongzhuo Zhao ADLab of VenustechScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 ABC Research s.r.o CVE-2021-44224 CVE-2021-44790 CVE-2022-22719 CVE-2022-22720 CVE-2022-22721 Michael DePlante @izobashi Trend Micro Zero Day InitiativeQi Sun Trend MicroRobert Ai Trend MicroYe Zhang @co0py_Cat Baidu SecurityJon Thompson EvolveIA) Yonghwi Jin @jinmo123 Theoriactae0n Blacksun Hackers Club working with Trend Micro Zero Day InitiativeAndrew Williams GoogleAvi Drissman GoogleLiu Long Ant Security LightAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day InitiativeJack Dates RET2 Systems Incchenyuwang @mzzzz__ Tencent Security Xuanwu LabJordy Zomer @pwningsystems Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero product-security@apple.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/type
• agent/first-publish-date
• agent/severity
• collector/mitre-cve
• source/MITRE
• agent/trending
• agent/source
• agent/event
• agent/description
• agent/weakness
• agent/last-modified-date
• agent/references
• collector/apple-support
• agent/software-canonical-lookup-request
• agent/author
• collector/nvd-index
• source/Apple
• agent/software-canonical-lookup
• agent/softwarecombine
• agent/tags
• alias/CVE-2022-26758
• alias/CVE-2022-26743
• alias/CVE-2022-26714
• alias/CVE-2022-26757
• alias/CVE-2022-26764
• alias/CVE-2022-26765
• alias/CVE-2022-26706
• alias/CVE-2022-26767
• alias/CVE-2022-32882
• alias/CVE-2022-32790
• alias/CVE-2022-26776
• alias/CVE-2022-26708
• alias/CVE-2022-26775
• alias/CVE-2022-0778
• alias/CVE-2022-23308
• alias/CVE-2022-48575
• alias/CVE-2022-32794
• alias/CVE-2022-22617
• alias/CVE-2022-26712
• alias/CVE-2022-26727
• alias/CVE-2022-32782
• alias/CVE-2022-26693
• alias/CVE-2022-26746
• alias/CVE-2022-26731
• alias/CVE-2022-26766
• alias/CVE-2022-26715
• alias/CVE-2022-26718
• alias/CVE-2022-26723
• alias/CVE-2022-26728
• alias/CVE-2022-26704
• alias/CVE-2022-42857
• alias/CVE-2022-26726
• alias/CVE-2022-26755
• alias/CVE-2022-26696
• alias/CVE-2022-26700
• alias/CVE-2022-26709
• alias/CVE-2022-26710
• alias/CVE-2022-26717
• alias/CVE-2022-26716
• alias/CVE-2022-26719
• alias/CVE-2022-22677
• alias/CVE-2022-26745
• alias/CVE-2022-26761
• alias/CVE-2022-26762
• alias/CVE-2022-0530
• alias/CVE-2018-25032
• alias/CVE-2021-45444
• alias/CVE-2022-26694
• alias/CVE-2022-26721
• alias/CVE-2022-26722
• alias/CVE-2022-26763
• alias/CVE-2022-32781
• alias/CVE-2022-26711
• alias/CVE-2022-26725
• alias/CVE-2022-26720
• alias/CVE-2022-26769
• alias/CVE-2022-26770
• alias/CVE-2022-26748
• alias/CVE-2022-26756
• alias/CVE-2022-26701
• alias/CVE-2022-26768
• alias/CVE-2021-44790
• alias/CVE-2022-22719
• alias/CVE-2022-22720
• alias/CVE-2022-22721
• alias/CVE-2022-26751
• alias/CVE-2022-26707
• alias/CVE-2022-26697
• alias/CVE-2022-26698
• alias/CVE-2022-26736
• alias/CVE-2022-26737
• alias/CVE-2022-26738
• alias/CVE-2022-26739
• alias/CVE-2022-26740
• alias/CVE-2022-32783
• alias/CVE-2022-26742
• alias/CVE-2022-26749
• alias/CVE-2022-26750
• alias/CVE-2022-26752
• alias/CVE-2022-26753
• alias/CVE-2022-26754
• alias/CVE-2021-44224
• alias/CVE-2022-26741
• vendor/apple
• canonical/tvos
• canonical/macos catalina
• canonical/apple ios and macos
• version/apple ios and macos/10.15
• version/apple ios and macos/10.15.7
• version/apple ios and macos/10.15.7-security_update_2020
• version/apple ios and macos/10.15.7-security_update_2020-001
• version/apple ios and macos/10.15.7-security_update_2020-005
• version/apple ios and macos/10.15.7-security_update_2020-007
• version/apple ios and macos/10.15.7-security_update_2021-001
• version/apple ios and macos/10.15.7-security_update_2021-002
• version/apple ios and macos/10.15.7-security_update_2021-003
• version/apple ios and macos/10.15.7-security_update_2021-006
• version/apple ios and macos/10.15.7-security_update_2021-007
• version/apple ios and macos/10.15.7-security_update_2021-008
• version/apple ios and macos/10.15.7-security_update_2022-001
• version/apple ios and macos/10.15.7-security_update_2022-002
• version/apple ios and macos/10.15.7-security_update_2022-003
• version/apple ios and macos/10.15.7-supplemental_update
• version/apple ios and macos/12.0.0
• canonical/apple ios, ipados, and watchos
• canonical/macos