CVE-2022-46694

Description

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, iOS 15.7.2 and iPadOS 15.7.2, tvOS 16.2, watchOS 9.2. Parsing a maliciously crafted video file may lead to kernel code execution.

References

https://support.apple.com/en-us/HT213535

https://support.apple.com/en-us/HT213531

https://support.apple.com/en-us/HT213536

https://support.apple.com/en-us/HT213530

http://seclists.org/fulldisclosure/2022/Dec/27

http://seclists.org/fulldisclosure/2022/Dec/26

http://seclists.org/fulldisclosure/2022/Dec/21

http://seclists.org/fulldisclosure/2022/Dec/20

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3