Уязвимость DoS атаки при обработке веб-контента в macOS, Safari, iOS и iPadOS
Описание
Проблема решена путем улучшения обработки памяти. Обработка веб-контента может привести к DoS атаке.
Затронутые версии ПО
- macOS Sonoma < 14.1
- Safari < 17.1
- iOS < 16.7.2
- iPadOS < 16.7.2
- iOS < 17.1
- iPadOS < 17.1
Тип уязвимости
DoS атака
Ссылки
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing List
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing List
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Vendor Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing List
Уязвимые конфигурации
Одно из
Одно из
Одно из
EPSS
6.5 Medium
CVSS3
Дефекты
Связанные уязвимости
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, Safari 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing web content may lead to a denial-of-service.
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, Safari 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing web content may lead to a denial-of-service.
The issue was addressed with improved memory handling. This issue is f ...
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, Safari 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing web content may lead to a denial-of-service.
Уязвимость модулей отображения веб-страниц WebKitGTK+ и WPE WebKit, вызванная переполнением буфера, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.5 Medium
CVSS3