CVE-2020-9844: Double Free
Published May 20, 2020
·Updated
A double free issue was addressed with improved memory management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory.
Other sources
Wi-Fi. A double free issue was addressed with improved memory management.
Credit
Ian Beer(Google Project Zero)
Affected Software
31 affected componentsFixes available
Apple macOS Catalina<10.15.5
10.15.5
Apple Mojave
Apple High Sierra
Apple iOS<13.5
13.5
Apple iPadOS<13.5
13.5
Apple iPadOS<13.5
Apple iPhone OS<13.5
Apple iOS and macOS>=10.13<10.13.6
Apple iOS and macOS>=10.14<10.14.6
Apple iOS and macOS>=10.15<10.15.5
Apple iOS and macOS=10.13.6
Apple iOS and macOS=10.13.6-security_update_2018-002
Apple iOS and macOS=10.13.6-security_update_2018-003
Apple iOS and macOS=10.13.6-security_update_2019-001
Apple iOS and macOS=10.13.6-security_update_2019-002
Apple iOS and macOS=10.13.6-security_update_2019-003
Apple iOS and macOS=10.13.6-security_update_2019-004
Apple iOS and macOS=10.13.6-security_update_2019-005
Apple iOS and macOS=10.13.6-security_update_2019-006
Apple iOS and macOS=10.13.6-security_update_2019-007
Apple iOS and macOS=10.13.6-security_update_2020-001
Apple iOS and macOS=10.13.6-security_update_2020-002
Apple iOS and macOS=10.14.6
Apple iOS and macOS=10.14.6-security_update_2019-001
Apple iOS and macOS=10.14.6-security_update_2019-002
Apple iOS and macOS=10.14.6-security_update_2019-004
Apple iOS and macOS=10.14.6-security_update_2019-005
Apple iOS and macOS=10.14.6-security_update_2019-006
Apple iOS and macOS=10.14.6-security_update_2019-007
Apple iOS and macOS=10.14.6-security_update_2020-001
Apple iOS and macOS=10.14.6-security_update_2020-002
Event History
Jun 9, 2020
CVE Published
via MITRE·04:16 PM
Data Sourced
via MITRE·04:16 PM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2020-9827
- CVE-2020-9772
- CVE-2020-9826
- CVE-2020-9842
- CVE-2020-9804
- CVE-2020-9815
- CVE-2020-9791
- CVE-2020-9831
- CVE-2020-9779
- CVE-2020-3882
- CVE-2020-9828
- CVE-2020-9856
- CVE-2020-9847
- CVE-2020-9855
- CVE-2020-9816
- CVE-2020-3878
- CVE-2020-9789
- CVE-2020-9790
- CVE-2020-9822
- CVE-2020-9796
- CVE-2020-9837
- CVE-2020-9821
- CVE-2020-9797
- CVE-2020-9852
- CVE-2020-9795
- CVE-2020-9808
- CVE-2020-9811
- CVE-2020-9812
- CVE-2020-9813
- CVE-2020-9814
- CVE-2020-9809
- CVE-2019-14868
- CVE-2020-9994
- CVE-2020-9857
- CVE-2020-9817
- CVE-2020-9851
- CVE-2020-9793
- CVE-2014-9512
- CVE-2020-9825
- CVE-2020-9771
- CVE-2020-9788
- CVE-2020-9854
- CVE-2020-9824
- CVE-2020-9810
- CVE-2020-9794
- CVE-2020-9839
- CVE-2020-9792
- CVE-2020-9844
- CVE-2020-9830
- CVE-2020-9834
- CVE-2020-9833
- CVE-2020-9832
- CVE-2020-9841
- CVE-2019-20044
- CVE-2020-6616
- CVE-2020-9838
- CVE-2020-9829
- CVE-2020-9835
- CVE-2020-9820
- CVE-2020-9819
- CVE-2020-9818
- CVE-2020-9823
- CVE-2020-9848
- CVE-2020-9805
- CVE-2020-9802
- CVE-2020-9850
- CVE-2020-9843
- CVE-2020-9803
- CVE-2020-9806
- CVE-2020-9807
- CVE-2020-9800
- CVE-2019-20503