CVE-2022-42864: Race Condition
First published: Tue Dec 13 2022(Updated: )
IOHIDFamily. A race condition was addressed with improved state handling.
Credit: Tommy Muir @Muirey03 Tommy Muir @Muirey03 Tommy Muir @Muirey03 Tommy Muir @Muirey03 Tommy Muir @Muirey03 Tommy Muir @Muirey03 Tommy Muir @Muirey03 product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iOS | <16.2 | 16.2 |
| Apple iPadOS | <16.2 | 16.2 |
| Apple iOS | <15.7.2 | 15.7.2 |
| Apple iPadOS | <15.7.2 | 15.7.2 |
| <13.1 | 13.1 | |
| Apple macOS Monterey | <12.6.2 | 12.6.2 |
| Apple macOS Big Sur | <11.7.2 | 11.7.2 |
| Apple tvOS | <16.2 | 16.2 |
| Apple watchOS | <9.2 | 9.2 |
| Apple iPadOS | <15.7.2 | |
| Apple iPadOS | >=16.0<16.2 | |
| Apple iPhone OS | <15.7.2 | |
| Apple iPhone OS | >=16.0<16.2 | |
| Apple macOS | <11.7.2 | |
| Apple macOS | >=12.0<12.6.2 | |
| Apple macOS | =13.0 | |
| Apple tvOS | <16.2 | |
| Apple watchOS | <9.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://seclists.org/fulldisclosure/2022/Dec/20
- http://seclists.org/fulldisclosure/2022/Dec/21
- http://seclists.org/fulldisclosure/2022/Dec/23
- http://seclists.org/fulldisclosure/2022/Dec/24
- http://seclists.org/fulldisclosure/2022/Dec/25
- http://seclists.org/fulldisclosure/2022/Dec/26
- http://seclists.org/fulldisclosure/2022/Dec/27
- https://support.apple.com/en-us/HT213530 (Advisory)
- https://support.apple.com/en-us/HT213531 (Advisory)
- https://support.apple.com/en-us/HT213532 (Advisory)
- https://support.apple.com/en-us/HT213533 (Advisory)
- https://support.apple.com/en-us/HT213534 (Advisory)
- https://support.apple.com/en-us/HT213535 (Advisory)
- https://support.apple.com/en-us/HT213536 (Advisory)
- https://support.apple.com/kb/HT213536
- https://support.apple.com/kb/HT213532
- https://support.apple.com/kb/HT213535
- https://support.apple.com/kb/HT213530
- https://support.apple.com/kb/HT213533
- https://support.apple.com/kb/HT213534
- https://support.apple.com/kb/HT213531
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2022-46717
- CVE-2022-42843
- CVE-2022-46694
- CVE-2022-42865
- CVE-2022-42859
- CVE-2022-46693
- CVE-2022-42864
- CVE-2022-46690
- CVE-2022-42837
- CVE-2022-46689
- CVE-2022-42842
- CVE-2022-42845
- CVE-2022-48618
- CVE-2022-40303
- CVE-2022-40304
- CVE-2022-42855
- CVE-2022-46695
- CVE-2022-42849
- CVE-2022-46703
- CVE-2022-42866
- CVE-2022-46705
- CVE-2022-42867
- CVE-2022-46691
- CVE-2022-46692
- CVE-2022-42852
- CVE-2022-46696
- CVE-2022-46700
- CVE-2022-46698
- CVE-2022-46699
- CVE-2022-42863
- CVE-2022-42858
- CVE-2022-42847
- CVE-2022-42854
- CVE-2022-42853
- CVE-2022-35252
- CVE-2022-32942
- CVE-2022-46720
- CVE-2022-46710
- CVE-2022-46697
- CVE-2022-46701
- CVE-2022-42861
- CVE-2022-42839
- CVE-2022-46716
- CVE-2022-46704
- CVE-2022-32943
- CVE-2022-42840
- CVE-2022-42862
- CVE-2022-24836
- CVE-2022-29181
- CVE-2022-46718
- CVE-2022-32919
- CVE-2022-46725
- CVE-2022-42856
- CVE-2022-42841
- CVE-2022-42848
- CVE-2022-42851
- CVE-2022-46702
- CVE-2022-42850
- CVE-2022-42846
- CVE-2022-42844
- CVE-2022-42821
- CVE-2023-23496
Frequently Asked Questions
What is CVE-2022-42864?
CVE-2022-42864 is a vulnerability in IOHIDFamily related to a race condition that was addressed with improved state handling.
Which software products are affected by CVE-2022-42864?
CVE-2022-42864 affects Apple iOS (up to version 16.2), Apple iPadOS (up to version 16.2), Apple macOS Ventura (up to version 13.1), Apple macOS Monterey (up to version 12.6.2), Apple macOS Big Sur (up to version 11.7.2), Apple tvOS (up to version 16.2), and Apple watchOS (up to version 9.2).
How severe is CVE-2022-42864?
The severity of CVE-2022-42864 has not been specified.
What is the remedy for CVE-2022-42864?
The remedy for CVE-2022-42864 is to update to the latest version of the affected software.
Where can I find more information about CVE-2022-42864?
More information about CVE-2022-42864 can be found on the following references: - [Apple Support - HT213530](https://support.apple.com/en-us/HT213530) - [Apple Support - HT213532](https://support.apple.com/en-us/HT213532) - [Apple Support - HT213531](https://support.apple.com/en-us/HT213531)
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/softwarecombine
- agent/description
- collector/apple-support
- source/Apple
- agent/software-canonical-lookup
- agent/tags
- agent/event
- vendor/apple
- canonical/apple ipados
- version/apple ipados/16.0
- canonical/apple iphone os
- version/apple iphone os/16.0
- canonical/apple macos
- version/apple macos/12.0
- version/apple macos/13.0
- canonical/apple tvos
- canonical/apple watchos
- canonical/apple macos ventura
- canonical/apple ios
- canonical/apple macos monterey
- canonical/apple macos big sur