Security Vulnerabilities fixed in iTunes HT209604

Description

A buffer overflow was addressed with improved bounds checking. A type confusion issue was addressed with improved memory handling. A memory corruption issue was addressed with improved state management. Multiple memory corruption issues were addressed with improved memory handling. A cross-origin issue existed with the fetch API. This was addressed with improved input validation. A memory corruption issue was addressed with improved memory handling. A use after free issue was addressed with improved memory management. A logic issue was addressed with improved validation. A memory corruption issue was addressed with improved validation. A validation issue was addressed with improved logic. A logic issue was addressed with improved validation. A buffer overflow was addressed with improved bounds checking. A type confusion issue was addressed with improved memory handling. A memory corruption issue was addressed with improved state management. Multiple memory corruption issues were addressed with improved memory handling. A cross-origin issue existed with the fetch API. This was addressed with improved input validation. A memory corruption issue was addressed with improved memory handling. A use after free issue was addressed with improved memory management. A logic issue was addressed with improved validation. A memory corruption issue was addressed with improved validation. A validation issue was addressed with improved logic. A logic issue was addressed with improved validation.

Affected Applications

iTunes

CVE References

CVE-2019-8542 CVE-2019-8506 CVE-2019-8535 CVE-2019-6201 CVE-2019-8518 CVE-2019-8523 CVE-2019-8524 CVE-2019-8558 CVE-2019-8559 CVE-2019-8563 CVE-2019-8515 CVE-2019-8536 CVE-2019-8544 CVE-2019-7285 CVE-2019-8556 CVE-2019-8503 CVE-2019-8562 CVE-2019-7292 CVE-2019-8551

Other References

https://support.apple.com/en-us/HT209604