CVE-2022-22677

Name
CVE-2022-22677
Description
A logic issue in the handling of concurrent media was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5. Video self-preview in a webRTC call may be interrupted if the user answers a phone call.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://support.apple.com/en-us/HT213257
MISC https://support.apple.com/en-us/HT213258

Match rules

CPE URI Source package Min version Max version
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* macos >= 12.0.0 < 12.4
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* iphone_os >= None < 15.5
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* ipados >= None < 15.5

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
webkit2gtk-6.0 edge-community 2.36.4-r0 None fixed
webkit2gtk-6.0 3.22-community 2.36.4-r0 None fixed
webkit2gtk-6.0 3.21-community 2.36.4-r0 None fixed
webkit2gtk-6.0 3.20-community 2.36.4-r0 None fixed
webkit2gtk-6.0 3.19-community 2.36.4-r0 None fixed
webkit2gtk-6.0 3.18-community 2.36.4-r0 None fixed
webkit2gtk-5.0 edge-community 2.36.4-r0 knuxify <knuxify@gmail.com> fixed
webkit2gtk-5.0 3.17-community 2.36.4-r0 None fixed
webkit2gtk edge-community 2.36.4-r0 Rasmus Thomsen <oss@cogitri.dev> fixed
webkit2gtk 3.20-community 2.36.4-r0 None fixed
webkit2gtk 3.19-community 2.36.4-r0 None fixed
webkit2gtk 3.18-community 2.36.4-r0 None fixed
webkit2gtk 3.17-community 2.36.4-r0 None fixed