CVE-2018-4449: Buffer Overflow

Q: What is the severity of CVE-2018-4449?

The severity of CVE-2018-4449 is critical.

Q: Which software versions are affected by CVE-2018-4449?

Versions prior to macOS Mojave 10.14.2 are affected by CVE-2018-4449.

Q: How can I fix CVE-2018-4449?

Update your macOS to version 10.14.2 or higher to fix CVE-2018-4449.

Q: What is the Common Weakness Enumeration (CWE) ID for CVE-2018-4449?

The CWE ID for CVE-2018-4449 is CWE-119.

Q: Where can I find more information about CVE-2018-4449?

You can find more information about CVE-2018-4449 on the Apple support page: [link](https://support.apple.com/en-us/HT209341)

Published Dec 5, 2018

Updated

WindowServer. A memory corruption issue was addressed with improved memory handling.

Other sources

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.2.

Credit

Hanqing Zhao, Yufeng Ruan, Kun Yang(Chaitin Security Research Lab)

Affected Software

4 affected componentsFixes available

Apple macOS Mojave<10.14.2

10.14.2

Apple High Sierra

Apple Sierra

Apple iOS and macOS<10.14.2

Event History

Apr 3, 2019

CVE Published

via MITRE·05:43 PM

Data Sourced

via MITRE·05:43 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT209341

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is the severity of CVE-2018-4449?

The severity of CVE-2018-4449 is critical.

Which software versions are affected by CVE-2018-4449?