An issue exists in certain Apple products. iOS prior to 11.2.5 is affected. macOS prior to 10.13.3 is affected. Safari prior to 11.0.3 is affected. iCloud prior to 7.3 on Windows is affected. iTunes prior to 12.7.3 on Windows is affected. tvOS prior to 11.2.5 is affected. watchOS prior to 4.2.2 is affected. The issue involves the "WebKit" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple iphone os |
||
apple mac os x |
||
apple safari |
||
apple apple tv |
||
apple watchos |
||
apple icloud |
||
apple itunes |
||
canonical ubuntu linux 17.10 |
||
canonical ubuntu linux 16.04 |
Meanwhile, HomePod inches closer to actually shipping, allegedly
Apple has released security patches for iOS and macOS that include, among other things, Meltdown and Spectre fixes. The new versions should be installed as soon as possible. On macOS, the update will be delivered as High Sierra 10.13.3 or Security Update 2018-001 for Sierra and El Capitan machines. Headlining the security update is a patch for CVE-2017-5754, better known as Meltdown. The Intel processor bug allows malicious code to potentially read sensitive data and personal information, such a...