CVE-2023-41983
MEDIUMSafari < 17.1 - Denial of Service via Memory Handling Issue
Title source: llmDescription
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, Safari 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing web content may lead to a denial-of-service.
References (15)
Core 15
Core References
Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2023/Oct/19
Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2023/Oct/23
Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2023/Oct/24
Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2023/Oct/27
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/RPPMOWFYZODONTA3RLZOKSGNR4DELGG2/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/S3O7ITSBZDHLBM5OG22K6RZAHRRTGECM/
Mailing List
https://lists.fedoraproject.org/archives/list/[email protected]/message/ZTCZGQPRDAOPP6NK4CIDJKIPMBWD5J7K/
Release Notes, Vendor Advisory
https://support.apple.com/en-us/HT213981
Release Notes, Vendor Advisory
https://support.apple.com/en-us/HT213982
Release Notes, Vendor Advisory
https://support.apple.com/en-us/HT213984
Release Notes, Vendor Advisory
https://support.apple.com/en-us/HT213986
Vendor Advisory
https://support.apple.com/kb/HT213984
Third Party Advisory
https://www.debian.org/security/2023/dsa-5557
Third Party Advisory
https://security.gentoo.org/glsa/202401-33
Scores
CVSS v3
6.5
EPSS
0.0133
EPSS Percentile
80.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
Status
published
Products (9)
apple/ipados
< 16.7.2
apple/iphone_os
< 16.7.2
apple/macos
14.0 - 14.1
apple/safari
< 17.1
debian/debian_linux
11.0
debian/debian_linux
12.0
fedoraproject/fedora
37
fedoraproject/fedora
38
fedoraproject/fedora
39
Published
Oct 25, 2023
Tracked Since
Feb 18, 2026