CVE-2018-4257: Buffer Overflow

Q: What is the vulnerability ID?

The vulnerability ID is CVE-2018-4257.

Q: What is the severity level of CVE-2018-4257?

The severity level of CVE-2018-4257 is critical.

Q: Which operating systems are affected by CVE-2018-4257?

macOS High Sierra before 10.13.5, Sierra, and El Capitan are affected.

Q: How was the buffer overflow addressed?

The buffer overflow was addressed with improved size validation.

Q: How can I learn more about CVE-2018-4257?

You can learn more about CVE-2018-4257 by visiting the following references: [Apple Support - HT208849](https://support.apple.com/HT208849) and [Apple Support - HT208849 (en-us)](https://support.apple.com/en-us/HT208849).

Published Jun 1, 2018

Updated

AppleGraphicsPowerManagement. A buffer overflow was addressed with improved size validation.

Other sources

In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved size validation.

Credit

shrek_wzw(Qihoo 360 Nirvan Team)

Affected Software

4 affected componentsFixes available

Apple macOS High Sierra<10.13.5

10.13.5

Apple Sierra

Apple El Capitan

Apple iOS and macOS<10.13.5

Event History

Jan 11, 2019

CVE Published

via MITRE·06:00 PM

Data Sourced

via MITRE·06:00 PM

Description

Parent advisories

This vulnerability appears in the following advisories.

HT208849

Frequently Asked Questions

What is the vulnerability ID?

The vulnerability ID is CVE-2018-4257.

What is the severity level of CVE-2018-4257?

The severity level of CVE-2018-4257 is critical.

Which operating systems are affected by CVE-2018-4257?

macOS High Sierra before 10.13.5, Sierra, and El Capitan are affected.

How was the buffer overflow addressed?