First published: Mon Sep 12 2022(Updated: )
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, watchOS 9, macOS Monterey 12.6, tvOS 16. An app may be able to execute arbitrary code with kernel privileges.
Credit: Zweig Kunlun LabZweig Kunlun LabZweig Kunlun LabZweig Kunlun LabZweig Kunlun LabZweig Kunlun Lab product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS Big Sur | <11.7 | 11.7 |
<12.6 | 12.6 | |
Apple iOS | <16 | 16 |
Apple watchOS | <9 | 9 |
Apple tvOS | <16 | 16 |
<13 | 13 | |
Apple iPhone OS | <16.0 | |
Apple macOS | >=11.0<11.7 | |
Apple macOS | >=12.0.0<12.6 | |
Apple tvOS | <16.0 | |
Apple watchOS | <9.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)
(Found alongside the following vulnerabilities)
CVE-2022-32914 is a kernel vulnerability related to a use after free issue that has been addressed with improved memory management.
Apple macOS Monterey versions up to 12.6 are affected by CVE-2022-32914.
Apple macOS Big Sur versions up to 11.7 are affected by CVE-2022-32914.
Apple iOS versions up to 16 are affected by CVE-2022-32914.
Apple tvOS versions up to 16 are affected by CVE-2022-32914.
Apple watchOS versions up to 9 are affected by CVE-2022-32914.
Apple macOS Ventura versions up to 13 are affected by CVE-2022-32914.
The remedy for CVE-2022-32914 in Apple macOS Monterey is to update to version 12.6 or later.
The remedy for CVE-2022-32914 in Apple macOS Big Sur is to update to version 11.7 or later.
The remedy for CVE-2022-32914 in Apple iOS is to update to version 16 or later.
The remedy for CVE-2022-32914 in Apple tvOS is to update to version 16 or later.
The remedy for CVE-2022-32914 in Apple watchOS is to update to version 9 or later.
The remedy for CVE-2022-32914 in Apple macOS Ventura is to update to version 13 or later.
You can find more information about CVE-2022-32914 on the Apple support website.
The CWE for CVE-2022-32914 is CWE-416.