CVE-2018-4443: Buffer Overflow

Q: What is the vulnerability ID?

The vulnerability ID is CVE-2018-4443.

Q: What is the severity of CVE-2018-4443?

The severity of CVE-2018-4443 is high with a severity value of 8.8.

Q: Which software versions are affected by CVE-2018-4443?

Versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, and iCloud for Windows 7.9 are affected by CVE-2018-4443.

Q: How can I fix CVE-2018-4443?

To fix CVE-2018-4443, you need to update to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, or iCloud for Windows 7.9.

Q: Where can I find more information about CVE-2018-4443?

You can find more information about CVE-2018-4443 at the following references: - [https://support.apple.com/kb/HT209340](https://support.apple.com/kb/HT209340) - [https://support.apple.com/kb/HT209342](https://support.apple.com/kb/HT209342) - [https://support.apple.com/kb/HT209343](https://support.apple.com/kb/HT209343)

Published Dec 5, 2018

Updated

WebKit. A memory corruption issue was addressed with improved memory handling.

Other sources

WebK it. A memory corruption issue was addressed with improved memory handling.

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

Credit

lokihardt(Google Project Zero)

Affected Software

13 affected componentsFixes available

Apple tvOS<12.1.1

12.1.1

Apple WatchOS<5.1.2

5.1.2

Apple iCloud for Windows<7.9

7.9

Apple iTunes for Windows<12.9.2

12.9.2

Apple Safari<12.0.2

12.0.2

Apple iOS<12.1.1

12.1.1

Apple Safari<12.0.2

Apple iPhone OS<12.1.1

Apple tvOS<12.1.1

Apple WatchOS<5.1.2

Apple iCloud<7.9

Apple iTunes<12.9.2

Microsoft Windows

Event History

Apr 3, 2019

CVE Published

via MITRE·05:43 PM

Data Sourced

via MITRE·05:43 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is the vulnerability ID?

The vulnerability ID is CVE-2018-4443.

What is the severity of CVE-2018-4443?