The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, watchOS 11.4, visionOS 2.4. An attacker on the local network may cause an unexpected app termination.
Weakness
The product dereferences a pointer that it expects to be valid but is NULL.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ipados | Apple | * | 17.7.6 (excluding) |
| Ipados | Apple | 18.0 (including) | 18.4 (excluding) |
| Iphone_os | Apple | * | 18.4 (excluding) |
| Macos | Apple | * | 13.7.5 (excluding) |
| Macos | Apple | 14.0 (including) | 14.7.5 (excluding) |
| Macos | Apple | 15.0 (including) | 15.4 (excluding) |
| Tvos | Apple | * | 18.4 (excluding) |
| Visionos | Apple | * | 2.4 (excluding) |
| Watchos | Apple | * | 11.4 (excluding) |
Potential Mitigations
References
- https://support.apple.com/en-us/122371
- https://support.apple.com/en-us/122372
- https://support.apple.com/en-us/122373
- https://support.apple.com/en-us/122374
- https://support.apple.com/en-us/122375
- https://support.apple.com/en-us/122376
- https://support.apple.com/en-us/122377
- https://support.apple.com/en-us/122378