CVE-2022-32844: Race Condition
First published: Wed Jul 20 2022(Updated: )
A race condition was addressed with improved state handling. This issue is fixed in tvOS 15.6, watchOS 8.7, iOS 15.6 and iPadOS 15.6. An app with arbitrary kernel read and write capability may be able to bypass Pointer Authentication.
Credit: Sreejith Krishnan R @skr0x1c0 Sreejith Krishnan R @skr0x1c0 Sreejith Krishnan R @skr0x1c0 product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iPadOS | <15.6 | |
| Apple iPhone OS | <15.6 | |
| Apple tvOS | <15.6 | |
| Apple watchOS | <8.7 | |
| Apple watchOS | <8.7 | 8.7 |
| Apple iOS | <15.6 | 15.6 |
| Apple iPadOS | <15.6 | 15.6 |
| Apple tvOS | <15.6 | 15.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT213340 (Advisory)
- https://support.apple.com/en-us/HT213342 (Advisory)
- https://support.apple.com/en-us/HT213346 (Advisory)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2022-32832
- CVE-2022-32788
- CVE-2022-32824
- CVE-2022-32826
- CVE-2022-32845
- CVE-2022-32840
- CVE-2022-32810
- CVE-2022-32820
- CVE-2022-32825
- CVE-2022-32839
- CVE-2022-32819
- CVE-2022-32793
- CVE-2022-32821
- CVE-2022-32787
- CVE-2022-32841
- CVE-2022-48503
- CVE-2022-32813
- CVE-2022-32815
- CVE-2022-32817
- CVE-2022-32844
- CVE-2022-26981
- CVE-2022-32823
- CVE-2022-32814
- CVE-2022-32857
- CVE-2022-32863
- CVE-2022-32816
- CVE-2022-32792
- CVE-2022-32847
- CVE-2022-32828
- CVE-2022-32849
- CVE-2022-32802
- CVE-2022-32830
- CVE-2022-32837
- CVE-2022-42805
- CVE-2022-32948
- CVE-2022-32829
- CVE-2022-32855
- CVE-2022-32785
- CVE-2022-26768
- CVE-2022-32838
- CVE-2022-32784
- CVE-2022-32885
- CVE-2022-2294
- CVE-2022-32860
Frequently Asked Questions
What is the severity of CVE-2022-32844?
The severity of CVE-2022-32844 is not mentioned in the provided information.
How does CVE-2022-32844 impact Apple iOS?
CVE-2022-32844 affects Apple iOS versions up to but not including 15.6.
How does CVE-2022-32844 impact Apple iPadOS?
CVE-2022-32844 affects Apple iPadOS versions up to but not including 15.6.
How does CVE-2022-32844 impact Apple watchOS?
CVE-2022-32844 affects Apple watchOS versions up to but not including 8.7.
How does CVE-2022-32844 impact Apple tvOS?
CVE-2022-32844 affects Apple tvOS versions up to but not including 15.6.
How do I fix CVE-2022-32844?
To fix CVE-2022-32844, update to the latest version of the affected software. Refer to the provided Apple support links for more information.
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- collector/apple-support
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- agent/trending
- vendor/apple
- canonical/apple watchos
- canonical/apple ipados
- canonical/apple iphone os
- canonical/apple tvos
- canonical/apple ios