First published: Mon Sep 12 2022(Updated: )
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. Processing maliciously crafted web content may lead to arbitrary code execution.
Credit: product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple Safari | <16 | 16 |
<15.7 | 15.7 | |
<15.7 | 15.7 | |
Apple iOS | <16 | 16 |
Apple watchOS | <9 | 9 |
Apple tvOS | <16 | 16 |
Apple Safari | <16.0 | |
Apple iPadOS | <15.7 | |
Apple iPhone OS | <15.7 | |
<13 | 13 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)
(Found alongside the following vulnerabilities)
CVE-2022-32912 is a vulnerability in WebKit that allows an out-of-bounds read.
Apple iOS versions up to and excluding 16, Apple iPadOS versions up to and excluding 15.7, Apple tvOS versions up to and excluding 16, Apple watchOS versions up to and excluding 9, Apple Safari versions up to and excluding 16, and macOS Ventura versions up to and excluding 13 are affected by CVE-2022-32912.
To fix CVE-2022-32912, it is recommended to update your Apple software to the latest available version provided by Apple.
You can find more information about CVE-2022-32912 on the Apple support website. Here are the references: [link1], [link2], [link3].