CVE-2019-8607

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2019-8607

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-8607.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2019-8607

Downstream

DEBIAN-CVE-2019-8607

RHSA-2019:3553

RHSA-2020:4035

RLSA-2019:3553

SUSE-SU-2019:1850-1

SUSE-SU-2019:2345-1

SUSE-SU-2019:2345-2

SUSE-SU-2019:2428-1

UBUNTU-CVE-2019-8607

USN-3992-1

openSUSE-SU-2019:1766-1

openSUSE-SU-2019:2207-1

openSUSE-SU-2019:2208-1

Related

Withdrawn

2026-01-27T04:17:15.861589Z

Published

2019-12-18T18:15:28Z

Modified

2026-01-31T03:43:47.302437Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may result in the disclosure of process memory.

References

Affected packages