Full Disclosure mailing list archives
APPLE-SA-2023-06-21-8 watchOS 8.8.1
From: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org>
Date: Wed, 21 Jun 2023 16:47:26 -0700
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2023-06-21-8 watchOS 8.8.1 watchOS 8.8.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/kb/HT213808. Apple maintains a Security Updates page at https://support.apple.com/HT201222 which lists recent software updates with security advisories. Kernel Available for: Apple Watch Series 3, Series 4, Series 5, Series 6, Series 7, and SE Impact: An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7. Description: An integer overflow was addressed with improved input validation. CVE-2023-32434: Georgy Kucherin (@kucher1n), Leonid Bezvershenko (@bzvr_), and Boris Larin (@oct0xor) of Kaspersky Instructions on how to update your Apple Watch software are available at https://support.apple.com/kb/HT204641 To check the version on your Apple Watch, open the Apple Watch app on your iPhone and select "My Watch > General > About". Alternatively, on your watch, select "My Watch > General > About". All information is also posted on the Apple Security Updates web site: https://support.apple.com/en-us/HT201222. This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEBP+4DupqR5Sgt1DB4RjMIDkeNxkFAmSTiCEACgkQ4RjMIDke NxlANRAA3CKg+3GhLSRfK/dPEk5fGpa3yOCFabc9kOoLP2Enlou0hgawDUJxv7iW cIEiVBEAJzBpb8XZkeK9eQ8eumbJNkqQxLG94BGYUR/gB6PyTbwoQ3pt3c6ydM6a zLuZP0q57Q9hMhIiSjjVM9oqxUlr4d4poLdQQGunZEgeHC3jvAIZpXNP0+RVZkMJ VBJqjhxXuyy+A159zdwAL62YqLQqIV/Yv8dGCmu5fzc2aZJKyOyOBWyZbvKJlcze +n2SepBt6kuNxkqAUywjNckF0phigoHjSTW/fhcA2J2M7KsTvs3eAcirwMuh5TQ8 XVXTqFX7chGhxffA8TxSC/ZkNdTyO9awKCDfFe7Zr6jahvaHbWdgqh0iHHoE0EAc +IR/CAwJDh5nkO4DlDRkEMF+XfHtxqN04M0mqPZZOm02zKwh+eBqtD6FqA27K0+S k3n7VQ29UlEQj759qDP2R3p2zNOpRmhedp4q1b6ttDpZmZoW8+qyeFFOpXaqOUnj M/pZEAt69CUtqmbmilZh+OWIdbYZAHtZS0bZ/2oOSle8jj3uqpjtS4eUmVuflGYj 3e2c65yQarbEVrOnl65W3cH52FbIbUl3nPQUItLgk+eo/s3Z5wxXBnvfOmaaxbnO g4l+riJ5xuZ/KFtcaS2rNE7OrkrRjv7ctV1n8TwwtqkypUMjsGw= =P+K6 -----END PGP SIGNATURE----- _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: https://seclists.org/fulldisclosure/
Current thread:
- APPLE-SA-2023-06-21-8 watchOS 8.8.1 Apple Product Security via Fulldisclosure (Jul 07)