First published: Mon Sep 12 2022(Updated: )
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. Processing maliciously crafted web content may lead to arbitrary code execution.
Credit: product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple Safari | <16 | 16 |
Apple iOS | <15.7 | 15.7 |
Apple iPadOS | <15.7 | 15.7 |
Apple iOS | <16 | 16 |
Apple watchOS | <9 | 9 |
Apple tvOS | <16 | 16 |
<13 | 13 | |
Apple Safari | <16.0 | |
Apple iPadOS | <15.7 | |
Apple iPhone OS | <15.7 | |
Fedoraproject Fedora | =35 | |
Fedoraproject Fedora | =36 | |
Fedoraproject Fedora | =37 | |
Debian Debian Linux | =10.0 | |
Debian Debian Linux | =11.0 | |
debian/webkit2gtk | <=2.36.4-1~deb10u1 | 2.38.6-0+deb10u1 2.40.5-1~deb11u1 2.42.1-1~deb11u2 2.40.5-1~deb12u1 2.42.1-1~deb12u1 2.42.1-2 |
debian/wpewebkit | 2.38.6-1~deb11u1 2.38.6-1 2.42.1-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)
(Found alongside the following vulnerabilities)
CVE-2022-32886 is a buffer overflow vulnerability in WebKit that has been addressed with improved memory handling.
CVE-2022-32886 affects Apple iOS (up to version 16), Apple iPadOS (up to version 15.7), Apple tvOS (up to version 16), Apple watchOS (up to version 9), Apple Safari (up to version 16), and macOS Ventura (up to version 13).
The severity of CVE-2022-32886 is not specified.
To fix CVE-2022-32886, it is recommended to update to the latest version of the affected software. Please refer to the references provided for specific remediation steps.
You can find more information about CVE-2022-32886 on the official Apple support website. Please refer to the provided references.