CVE-2024-23252

Reference Links

• https://support.apple.com/en-us/HT214081 (Advisory)
• https://support.apple.com/en-us/HT214084 (Advisory)
• https://support.apple.com/en-us/HT214089 (Advisory)
• https://webkitgtk.org/security/WSA-2024-0002.html
• https://www.cve.org/CVERecord?id=CVE-2024-23252
• https://ubuntu.com/security/notices/USN-6732-1
• https://nvd.nist.gov/vuln/detail/CVE-2024-23252
• https://launchpad.net/bugs/cve/CVE-2024-23252
• https://security-tracker.debian.org/tracker/CVE-2024-23252
• https://ubuntu.com/security/CVE-2024-23252
• http://seclists.org/fulldisclosure/2024/Mar/20
• http://seclists.org/fulldisclosure/2024/Mar/21

Parent vulnerabilities

(Appears in the following advisories)

• HT214089
• USN-6732-1
• HT214084
• HT214081

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2024-23273
• CVE-2024-23252
• CVE-2024-23254
• CVE-2024-23263
• CVE-2024-23280
• CVE-2024-23284
• CVE-2024-23291
• CVE-2024-23276
• CVE-2024-23227
• CVE-2024-23233
• CVE-2024-23269
• CVE-2024-23288
• CVE-2024-23277
• CVE-2024-23247
• CVE-2024-23248
• CVE-2024-23249
• CVE-2024-23250
• CVE-2024-23244
• CVE-2024-23205
• CVE-2022-48554
• CVE-2024-23253
• CVE-2024-23270
• CVE-2024-23257
• CVE-2024-23258
• CVE-2024-23286
• CVE-2024-23234
• CVE-2024-23266
• CVE-2024-23235
• CVE-2024-23265
• CVE-2024-23225
• CVE-2024-23278
• CVE-2024-0258
• CVE-2024-23279
• CVE-2024-23287
• CVE-2024-23264
• CVE-2024-23285
• CVE-2024-23283
• CVE-2023-48795
• CVE-2023-51384
• CVE-2023-51385
• CVE-2022-42816
• CVE-2024-23216
• CVE-2024-23267
• CVE-2024-23268
• CVE-2024-23274
• CVE-2023-42853
• CVE-2024-23275
• CVE-2024-23255
• CVE-2024-23294
• CVE-2024-23296
• CVE-2024-23259
• CVE-2024-23238
• CVE-2024-23239
• CVE-2024-23290
• CVE-2024-23232
• CVE-2024-23231
• CVE-2024-23230
• CVE-2024-23245
• CVE-2024-23292
• CVE-2024-23289
• CVE-2024-23293
• CVE-2024-23241
• CVE-2024-23272
• CVE-2024-23242
• CVE-2024-23281
• CVE-2024-23260
• CVE-2024-23246
• CVE-2024-23226
• CVE-2024-23243
• CVE-2024-23262
• CVE-2024-23297
• CVE-2024-23240
• CVE-2024-23220
• CVE-2024-23256

Frequently Asked Questions

• What is the status of CVE-2024-23252?

  CVE-2024-23252 has been rejected or withdrawn by its CVE Numbering Authority.

• What was the reason for the rejection of CVE-2024-23252?

  The rejection reason for CVE-2024-23252 is that the issue was addressed with improved memory handling.

• In which versions was the issue related to CVE-2024-23252 fixed?

  The issue related to CVE-2024-23252 was fixed in Safari 17.4, iOS 17.4, and iPadOS 17.4.

• Which Apple products were affected before the resolution of CVE-2024-23252?

  Affected products included Apple iOS, Apple iPadOS, and Apple Safari prior to their respective version 17.4 updates.

• What packages were potentially impacted by CVE-2024-23252 on Ubuntu?

  The WebKit2GTK package versions on Ubuntu were potentially impacted before the specified updates.