Apple Itunes 12.9 For Windows vulnerabilities

CVE-2018-4474 [HIGH] CVE-2018-4474: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4474 Component: WebKit Impact: Unexpected interaction causes an ASSERT failure Description: A memory consumption issue was addressed with improved memory handling.

CVE-2018-4414 [HIGH] CVE-2018-4414: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4414 Component: CoreFoundation Impact: An application may be able to gain elevated privileges Description: A memory corruption issue was addressed with improved input validation.

CVE-2018-4312 [HIGH] CVE-2018-4312: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4312 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2018-4319 [HIGH] CVE-2018-4319: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4319 Component: WebKit Impact: A malicious website may cause unexepected cross-origin behavior Description: A cross-origin issue existed with iframe elements. This was addressed with improved tracking of security origins.

CVE-2018-4197 [HIGH] CVE-2018-4197: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4197 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2018-4316 [HIGH] CVE-2018-4316: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4316 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved state management.

CVE-2018-4126 [HIGH] CVE-2018-4126: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4126 Component: CFNetwork Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2018-4311 [HIGH] CVE-2018-4311: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4311 Component: WebKit Impact: Cross-origin SecurityErrors includes the accessed frame’s origin Description: The issue was addressed by removing origin information.

CVE-2018-4358 [HIGH] CVE-2018-4358: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4358 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4360 [HIGH] CVE-2018-4360: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4360 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4317 [HIGH] CVE-2018-4317: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4317 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2018-4315 [HIGH] CVE-2018-4315: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4315 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2018-4361 [HIGH] CVE-2018-4361: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4361 Component: WebKit Impact: Unexpected interaction causes an ASSERT failure Description: A memory consumption issue was addressed with improved memory handling.

CVE-2018-4412 [HIGH] CVE-2018-4412: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4412 Component: CoreFoundation Impact: A malicious application may be able to elevate privileges Description: A memory corruption issue was addressed with improved input validation.

CVE-2018-4359 [HIGH] CVE-2018-4359: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4359 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4306 [HIGH] CVE-2018-4306: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4306 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2018-4191 [HIGH] CVE-2018-4191: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4191 Component: WebKit Impact: Unexpected interaction causes an ASSERT failure Description: A memory corruption issue was addressed with improved validation.

CVE-2018-4314 [HIGH] CVE-2018-4314: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4314 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2018-4323 [HIGH] CVE-2018-4323: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4323 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4328 [HIGH] CVE-2018-4328: iTunes 12.9 for Windows Apple Security Update: About the security content of iTunes 12.9 for Windows Product: iTunes 12.9 for Windows CVE: CVE-2018-4328 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.