Rapid7 Vulnerability & Exploit Database

OS X update for Kernel (CVE-2019-8744)

Back to Search

OS X update for Kernel (CVE-2019-8744)

Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
11/06/2019
Created
11/07/2019
Added
11/06/2019
Modified
08/23/2021

Description

A memory corruption issue existed in the handling of IPv6 packets. This issue was addressed with improved memory management. This issue is fixed in macOS Catalina 10.15, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6, iOS 13. A malicious application may be able to determine kernel memory layout.

Solution(s)

  • apple-osx-security-update-2019-001-mojave
  • apple-osx-security-update-2019-006-high-sierra
  • apple-osx-upgrade-10_15

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;