CVE-2019-6231: An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A…

CVE-2019-6231 [MEDIUM] CVE-2019-6231: tvOS 12.1.2 Apple Security Update: About the security content of tvOS 12.1.2 Product: tvOS Version: 12.1.2 CVE: CVE-2019-6231 Component: CoreAnimation Impact: A malicious application may be able to read restricted memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2019-6231 [MEDIUM] CVE-2019-6231: watchOS 5.1.3 Apple Security Update: About the security content of watchOS 5.1.3 Product: watchOS Version: 5.1.3 CVE: CVE-2019-6231 Component: CoreAnimation Impact: A malicious application may be able to read restricted memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2019-6231 [MEDIUM] CVE-2019-6231: macOS Mojave 10.14.3, Security Update 2019-001 High Sierra, Security Update 2019-001 Sierra Apple Security Update: About the security content of macOS Mojave 10.14.3, Security Update 2019-001 High Sierra, Security Update 2019-001 Sierra Product: macOS Mojave 10.14.3, Security Update 2019-001 High Sierra, Security Update 2019-001 Sierra CVE: CVE-2019-6231 Component: CoreAnimation Impact: A malicious application may be able to read restricted memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2019-6231 [MEDIUM] CVE-2019-6231: iOS 12.1.3 Apple Security Update: About the security content of iOS 12.1.3 Product: iOS Version: 12.1.3 CVE: CVE-2019-6231 Component: CoreAnimation Impact: A malicious application may be able to read restricted memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2019-6231 [MEDIUM] CWE-125 GHSA-27jf-6cr3-9cpv: An out-of-bounds read was addressed with improved bounds checking An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A malicious application may be able to read restricted memory.

CVE-2019-8507 [MEDIUM] Detailed Analysis of macOS Vulnerability CVE-2019-8507 FORTIGUARD LABS THREAT RESEARCH Detailed Analysis of macOS Vulnerability CVE-2019-8507 By Kai Lu | April 23, 2019 FortiGuard Labs Threat Analysis Report on an Memory Corruption Vulnerability in QuartzCore while Handling Shape Object. On March 25, 2019, Apple released macOS Mojave 10.14.4 and iOS 12.2. These two updates fixed a number of security vulnerabilities, including CVE-2019-8507 in QuartzCore (aka CoreAnimation), which I reported to Apple on January 3, 2019 using our FortiGuard Labs responsible disclosure process, read more. For more details on the Apple updates, please refer to https://support.apple.com/en-us/HT209600. In this blog I will provide a detailed analysis of this issue on macOS. Some of the analysis techniques used can be found in my previous blog, “Detailed Analysi

CVE-2019-6231 [MEDIUM] Detailed Analysis of macOS/iOS Vulnerability CVE-2019-6231 FORTIGUARD LABS THREAT RESEARCH Detailed Analysis of macOS/iOS Vulnerability CVE-2019-6231 By Kai Lu | January 24, 2019 FortiGuard Labs Threat Analysis The QuartzCore Out-of-Bounds Read Vulnerability in CA::Render::Decoder::decode_colorspace On Jan 22, 2019, Apple released macOS Mojave 10.14.3 and iOS 12.1.3. These two updates fixed a number of security vulnerabilities, including CVE-2019-6231 found in QuartzCore (aka. CoreAnimation). (For more details on the Apple updates, please refer to: https://support.apple.com/en-us/HT209446 and https://support.apple.com/en-us/HT209443.) I found this issue in macOS Mojave 10.14.2 on Dec 14, 2018 and reported it to Apple on Dec 21, 2018. However, Apple responded that said this issue had been fixed in the macOS Mojave 10.14.3 beta that was rele