Vulnerability - CVE-2022-32923

›

›vulnerability›CVE-2022-32923

Name

CVE-2022-32923

Source

NVD ( link)Debian ( link)

Description

A correctness issue in the JIT was addressed with improved checks. This issue is fixed in tvOS 16.1, iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, Safari 16.1, iOS 16.1 and iPadOS 16. Processing maliciously crafted web content may disclose internal states of the app.

CWEs

Published Date

Nov 1, 2022

Updated Date

Jun 17, 2026

Workaround

-

Advisories

http://www.openwall.com/lists/oss-security/2022/11/04/4Mailing List

https://support.apple.com/en-us/HT213488Vendor Advisory

https://support.apple.com/en-us/HT213489Vendor Advisory

https://support.apple.com/en-us/HT213490Vendor Advisory

https://support.apple.com/en-us/HT213491Vendor Advisory

https://support.apple.com/en-us/HT213492Vendor Advisory

https://support.apple.com/en-us/HT213495Vendor Advisory

http://www.openwall.com/lists/oss-security/2022/11/04/4Mailing List

https://support.apple.com/en-us/HT213488Vendor Advisory

https://support.apple.com/en-us/HT213489Vendor Advisory

https://support.apple.com/en-us/HT213490Vendor Advisory

https://support.apple.com/en-us/HT213491Vendor Advisory

https://support.apple.com/en-us/HT213492Vendor Advisory

https://support.apple.com/en-us/HT213495Vendor Advisory

Analysis#

Affected Component

Analysis

Vulnerability Ratings#

6.5

CVSSv31

6.5

CVSSv31

NaN

other

Others affected components#

Name

Project

Project Version

Version

Status

buildroot

2025.02.x

2.52.3

Not Affected

buildroot

master

2.52.3

Not Affected

yocto

master

2.50.6

Not Affected

yocto

scarthgap

2.44.4

Not Affected

Resolved with patches#

webkitgtk (yocto:kirkstone)

#

Title

Author

Resolve

1

[JSC] BakcwardPropagationPhase should carry NaN / Infinity

Yusuke Suzuki <ysuzuki@apple.com>

CVE-2022-32923