CVE-2018-4434: Input Validation

Q: What is CVE-2018-4434?

CVE-2018-4434 is a vulnerability in the Intel Graphics Driver that could allow an attacker to read out-of-bounds memory.

Q: How does CVE-2018-4434 affect macOS Mojave?

CVE-2018-4434 affects versions prior to macOS Mojave 10.14.2.

Q: What is the severity of CVE-2018-4434?

The severity of CVE-2018-4434 is high with a CVSS score of 7.1.

Q: How can I fix CVE-2018-4434?

To fix CVE-2018-4434, update your macOS to version 10.14.2 or later.

Q: Where can I find more information about CVE-2018-4434?

You can find more information about CVE-2018-4434 on the Apple support website at the following links: [link1](https://support.apple.com/en-us/HT209341) [link2](https://support.apple.com/kb/HT209341)

Published Dec 5, 2018

Updated

Intel Graphics Driver. An out-of-bounds read was addressed with improved input validation.

Other sources

An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14.2.

Credit

Zhuo Liang(Qihoo 360 Nirvan Team)

Affected Software

4 affected componentsFixes available

Apple macOS Mojave<10.14.2

10.14.2

Apple High Sierra

Apple Sierra

Apple iOS and macOS<10.14.2

Event History

Apr 3, 2019

CVE Published

via MITRE·05:43 PM

Data Sourced

via MITRE·05:43 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT209341

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2018-4434?

CVE-2018-4434 is a vulnerability in the Intel Graphics Driver that could allow an attacker to read out-of-bounds memory.

How does CVE-2018-4434 affect macOS Mojave?