CVE-2022-22666
Description
A memory corruption issue was addressed with improved validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, watchOS 8.5. Processing a maliciously crafted image may lead to heap corruption.
CWE
- (none)
Affected
- Apple / iOS and iPadOS — v=unspecified <15.4 [affected]
- Apple / tvOS — v=unspecified <15.4 [affected]
- Apple / watchOS — v=unspecified <8.5 [affected]
CVSS
- (none)
References
- https://support.apple.com/en-us/HT213182 x_refsource_MISC
- https://support.apple.com/en-us/HT213193 x_refsource_MISC
- https://support.apple.com/en-us/HT213186 x_refsource_MISC
- http://packetstormsecurity.com/files/167144/AppleVideoDecoder-CreateHeaderBuffer-Out-Of-Bounds-Free.html x_refsource_MISC
Source
cvelistV5-main/cves/2022/22xxx/CVE-2022-22666.json