{"id":30614,"date":"2022-09-13T20:38:47","date_gmt":"2022-09-13T16:38:47","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/168362\/APPLE-SA-2022-09-12-5.txt"},"modified":"2022-09-19T09:35:14","modified_gmt":"2022-09-19T05:05:14","slug":"apple-security-advisory-2022-09-12-5-safari","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/apple-security-advisory-2022-09-12-5-safari\/","title":{"rendered":"Apple Security Advisory 2022-09-12-5 Safari"},"content":{"rendered":"<p dir=\"ltr\">&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211;<br \/>\nHash: SHA256<\/p>\n<p dir=\"ltr\">APPLE-SA-2022-09-12-5 Safari 16<\/p>\n<p dir=\"ltr\">Safari 16 addresses the following issues.<br \/>\nInformation about the security content is also available at<br \/>\nhttps:\/\/support.apple.com\/HT213442.<\/p>\n<p dir=\"ltr\">Safari Extensions<br \/>\nAvailable for: macOS Big Sur and macOS Monterey<br \/>\nImpact: A website may be able to track users through Safari web<br \/>\nextensions<br \/>\nDescription: A logic issue was addressed with improved state<br \/>\nmanagement.<br \/>\nWebKit Bugzilla: 242278<br \/>\nCVE-2022-32868: Michael<\/p>\n<p dir=\"ltr\">WebKit<br \/>\nAvailable for: macOS Big Sur and macOS Monterey<br \/>\nImpact: Processing maliciously crafted web content may lead to<br \/>\narbitrary code execution<br \/>\nDescription: A buffer overflow issue was addressed with improved<br \/>\nmemory handling.<br \/>\nWebKit Bugzilla: 241969<br \/>\nCVE-2022-32886: P1umer, afang5472, xmzyshypnc<\/p>\n<p dir=\"ltr\">WebKit<br \/>\nAvailable for: macOS Big Sur and macOS Monterey<br \/>\nImpact: Processing maliciously crafted web content may lead to<br \/>\narbitrary code execution<br \/>\nDescription: An out-of-bounds read was addressed with improved bounds<br \/>\nchecking.<br \/>\nWebKit Bugzilla: 242762<br \/>\nCVE-2022-32912: Jeonghoon Shin (@singi21a) at Theori working with<br \/>\nTrend Micro Zero Day Initiative<\/p>\n<p dir=\"ltr\">WebKit<br \/>\nAvailable for: macOS Big Sur and macOS Monterey<br \/>\nImpact: Visiting a website that frames malicious content may lead to<br \/>\nUI spoofing<br \/>\nDescription: The issue was addressed with improved UI handling.<br \/>\nWebKit Bugzilla: 243236<br \/>\nCVE-2022-32891: @real_as3617, an anonymous researcher<\/p>\n<p dir=\"ltr\">Safari 16 may be obtained from the Mac App Store.<br \/>\nAll information is also posted on the Apple Security Updates<br \/>\nweb site: https:\/\/support.apple.com\/en-us\/HT201222.<\/p>\n<p dir=\"ltr\">This message is signed with Apple&#8217;s Product Security PGP key,<br \/>\nand details are available at:<br \/>\nhttps:\/\/www.apple.com\/support\/security\/pgp\/<\/p>\n<p dir=\"ltr\">&#8212;&#8211;BEGIN PGP SIGNATURE&#8212;&#8211;<\/p>\n<p dir=\"ltr\">iQIzBAEBCAAdFiEEBP+4DupqR5Sgt1DB4RjMIDkeNxkFAmMfdgMACgkQ4RjMIDke<br \/>\nNxk7dRAAgdvFNEmEdfhDdLWbn7ZIdNrxPZDsg1MiCVFyPvPesNRo3Uj+XI2m93E4<br \/>\nU7koTDn7+DE62TjkdNEqOQ0bXpy84uWAcZoZDmGJOt0IQOPwcMf8CMzhj\/GytrTt<br \/>\nPCC2IjWDuoJsoQ9lIm71WN3nsfrpO\/P4cO04H3Tw4CxFI9Oj0doALGvamf0XVYCN<br \/>\nTyCdw15kQ+WTriI5rnzsE4qqh4vaEKeuyEiZQzR26p3ctpT+inffGz6g9uYgy5AW<br \/>\nv1Kwln7DDSIvYyAcrIyPKqwjsdfD6dmnufKTSUkOHLOpvqx5P\/PLQ9f4qv3VXy6c<br \/>\nBs4eLUUvONzxoo07TB3V3\/OsC1eQwDnPugrja5SFTgZUpl9QM7PMijoOar7Y11JL<br \/>\nfMgJArHEDWB4JatejBrgsBps+SU2ozSAaT71hfm77Jb1TSSRDuxX2po2AjiwKOcF<br \/>\nS+T2yJSIgI5nsP9i1RRG3+hN6MOUKKmFxlWxXPLdCO4pG04qdmMOE5HR2bRgQ3\/o<br \/>\ngdRb\/OYTQkchSlhbpvdF8zO0QZLXh+GeiLxWoygfbQQmv33KeKRlrbKVctyB4HQZ<br \/>\nZxTi0Tn5pfdnuB2QvGn6b0KZZJlDHkiiNj3grvD5uFSH6H0MV7apLiJ636qEL\/Tp<br \/>\no8PWQgop+KfYatZDVAQMYekpRYwz7oDdFm\/i6SYvnP09wx55Ooc=+qsX<br \/>\n&#8212;&#8211;END PGP SIGNATURE&#8212;&#8211;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211; Hash: SHA256 APPLE-SA-2022-09-12-5 Safari 16 Safari 16 addresses the following issues. Information about the security content is also available at https:\/\/support.apple.com\/HT213442. Safari Extensions Available for: macOS Big Sur and macOS Monterey Impact: A website may be able to track users through Safari web extensions Description: A logic issue was addressed with &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-30614","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/30614","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=30614"}],"version-history":[{"count":2,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/30614\/revisions"}],"predecessor-version":[{"id":30893,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/30614\/revisions\/30893"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=30614"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=30614"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=30614"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}