CVE-2024-40815 Information

Jul 31, 2024 cve

Description

A race condition was addressed with additional validation. This issue is fixed in macOS Ventura 13.6.8 iOS 17.6 and iPadOS 17.6 watchOS 10.6 tvOS 17.6 macOS Sonoma 14.6. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.

Reference

https://support.apple.com/en-us/HT214117 https://support.apple.com/en-us/HT214120 https://support.apple.com/en-us/HT214124 https://support.apple.com/en-us/HT214119 https://support.apple.com/en-us/HT214122 http://seclists.org/fulldisclosure/2024/Jul/16 http://seclists.org/fulldisclosure/2024/Jul/21 http://seclists.org/fulldisclosure/2024/Jul/22 http://seclists.org/fulldisclosure/2024/Jul/18 http://seclists.org/fulldisclosure/2024/Jul/19

Share on: