CVE-2018-4147
https://notcve.org/view.php?id=CVE-2018-4147
In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory corruption issues exist and were addressed with improved memory handling. En iCloud para Windows en versiones anteriores a la 7.3, Safari en versiones anteriores a la 11.0.3, iTunes en versiones anteriores a la 12.7.3 para Windows e iOS en versiones anteriores a la 11.2.5, existen múltiples corrupciones de memoria y fueron abordadas mediante la mejora de la gestión de memoria. • https://support.apple.com/HT208463 https://support.apple.com/HT208465 https://support.apple.com/HT208473 https://support.apple.com/HT208474 https://support.apple.com/HT208475 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-4194
https://notcve.org/view.php?id=CVE-2018-4194
In iOS before 11.4, iCloud for Windows before 7.5, watchOS before 4.3.1, iTunes before 12.7.5 for Windows, and macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation. En iOS en versiones anteriores a la 11.4, iCloud para Windows en versiones anteriores a la 7.5, watchOS en versiones anteriores a la 4.3.1, iTunes en versiones anteriores a la 12.7.5 para Windows y macOS High Sierra en versiones anteriores a la 10.13.5, se abordó una lectura fuera de límites con la mejora de la validación de entradas. • https://support.apple.com/HT208848 https://support.apple.com/HT208849 https://support.apple.com/HT208851 https://support.apple.com/HT208852 https://support.apple.com/HT208853 • CWE-125: Out-of-bounds Read •
CVE-2018-4439
https://notcve.org/view.php?id=CVE-2018-4439
A logic issue was addressed with improved validation. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Un problema de lógica se abordó con una validación mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1.1; Safari en versiones anteriores a la 12.0.2; iTunes para Windows en versiones anteriores a la 12.9.2 y iCloud para Windows en versiones anteriores a la 7.9. • https://support.apple.com/kb/HT209340 https://support.apple.com/kb/HT209344 https://support.apple.com/kb/HT209345 https://support.apple.com/kb/HT209346 • CWE-20: Improper Input Validation •
CVE-2018-4442 – WebKit JSC JIT - GetIndexedPropertyStorage Use-After-Free
https://notcve.org/view.php?id=CVE-2018-4442
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1.1, tvOS en versiones anteriores a la 12.1.1, watchOS en versiones anteriores a la 5.1.2, Safari en versiones anteriores a la 12.0.2, iTunes para Windows en versiones anteriores a la 12.9.2 y iCloud para Windows en versiones anteriores a la 7.9. The doesGC function simply takes a node, and tells if it might cause a garbage collection. • https://www.exploit-db.com/exploits/46183 https://support.apple.com/kb/HT209340 https://support.apple.com/kb/HT209342 https://support.apple.com/kb/HT209343 https://support.apple.com/kb/HT209344 https://support.apple.com/kb/HT209345 https://support.apple.com/kb/HT209346 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-4443 – WebKit JSC - 'AbstractValue::set' Use-After-Free
https://notcve.org/view.php?id=CVE-2018-4443
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1.1, tvOS en versiones anteriores a la 12.1.1, watchOS en versiones anteriores a la 5.1.2, Safari en versiones anteriores a la 12.0.2, iTunes en versiones anteriores a la 12.9.2 y iCloud para Windows en versiones anteriores a la 7.9. WebKit JSC suffers from a use-after-free vulnerability that can be used to bypass write barriers. • https://www.exploit-db.com/exploits/46071 https://support.apple.com/kb/HT209340 https://support.apple.com/kb/HT209342 https://support.apple.com/kb/HT209343 https://support.apple.com/kb/HT209344 https://support.apple.com/kb/HT209345 https://support.apple.com/kb/HT209346 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •