CVE-2018-4248: Input Validation
An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.
Other sources
libxpc. An out-of-bounds read was addressed with improved input validation.
Credit
Affected Software
Event History
Parent advisories
This vulnerability appears in the following advisories.
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2018-4293
- CVE-2018-4269
- CVE-2018-4282
- CVE-2018-4280
- CVE-2018-4248
- CVE-2018-4277
- CVE-2018-4270
- CVE-2018-4278
- CVE-2018-4284
- CVE-2018-4266
- CVE-2018-4261
- CVE-2018-4262
- CVE-2018-4263
- CVE-2018-4264
- CVE-2018-4265
- CVE-2018-4267
- CVE-2018-4272
- CVE-2018-4271
- CVE-2018-4273
- CVE-2018-4470
- CVE-2018-4289
- CVE-2018-4268
- CVE-2018-4285
- CVE-2018-5383
- CVE-2018-4276
- CVE-2018-4178
- CVE-2018-4456
- CVE-2018-4283
- CVE-2018-3665
- CVE-2018-4259
- CVE-2018-4286
- CVE-2018-4287
- CVE-2018-4288
- CVE-2018-4291
- CVE-2018-6797
- CVE-2018-6913
- CVE-2017-0898
- CVE-2017-10784
- CVE-2017-14033
- CVE-2017-14064
- CVE-2017-17405
- CVE-2017-17742
- CVE-2018-6914
- CVE-2018-8777
- CVE-2018-8778
- CVE-2018-8779
- CVE-2018-8780
- CVE-2018-4274
- CVE-2018-4290
- CVE-2018-4327
- CVE-2018-4216
- CVE-2018-4260
- CVE-2018-4275
Frequently Asked Questions
What is CVE-2018-4248?
CVE-2018-4248 is a vulnerability in libxpc that allows for an out-of-bounds read due to improved input validation.
Which versions of iOS are affected by CVE-2018-4248?
Versions of iOS prior to 11.4.1 are affected by CVE-2018-4248.
Which versions of macOS are affected by CVE-2018-4248?
Versions of macOS High Sierra prior to 10.13.6 are affected by CVE-2018-4248.
How can I fix CVE-2018-4248 on tvOS?
To fix CVE-2018-4248 on tvOS, you need to update to version 11.4.1 or later.
How can I fix CVE-2018-4248 on watchOS?
To fix CVE-2018-4248 on watchOS, you need to update to version 4.3.2 or later.