CVE-2021-30991
https://notcve.org/view.php?id=CVE-2021-30991
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15.2 and iPadOS 15.2. A malicious application may be able to execute arbitrary code with kernel privileges. Se solucionó una lectura fuera de límites con una comprobación de límites mejorada. Este problema se solucionó en iOS versión 15.2 e iPadOS versión 15.2. • https://support.apple.com/en-us/HT212976 • CWE-125: Out-of-bounds Read •
CVE-2021-30988
https://notcve.org/view.php?id=CVE-2021-30988
Description: A permissions issue was addressed with improved validation. This issue is fixed in iOS 15.2 and iPadOS 15.2. A malicious application may be able to identify what other applications a user has installed. Descripción: se solucionó un problema de permisos con una comprobación mejorada. Este problema se solucionó en iOS versión 15.2 e iPadOS versión 15.2. • https://support.apple.com/en-us/HT212976 •
CVE-2021-30985
https://notcve.org/view.php?id=CVE-2021-30985
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.2 and iPadOS 15.2. A malicious application may be able to execute arbitrary code with kernel privileges. Se solucionó un problema de escritura fuera de límites con una comprobación de límites mejorada. Este problema se solucionó en iOS versión 15.2 e iPadOS versión 15.2. • https://support.apple.com/en-us/HT212976 • CWE-787: Out-of-bounds Write •
CVE-2021-30984 – webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-30984
A race condition was addressed with improved state handling. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution. Se solucionó una condición de carrera con un manejo de estado mejorado. Este problema se solucionó en tvOS versión 15.2, macOS Monterey versión 12.1, Safari versión 15.2, iOS versión 15.2 e iPadOS versión 15.2, watchOS versión 8.3. • http://www.openwall.com/lists/oss-security/2022/01/21/2 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7EQVZ3CEMTINLBZ7PBC7WRXVEVCRHNSM https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HQKWD4BXRDD2YGR5AVU7H5J5PIQIEU6V https://support.apple.com/en-us/HT212975 https://support.apple.com/en-us/HT212976 https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212980 https://support.apple.com/en-us • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2021-30983 – Apple iOS and iPadOS Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2021-30983
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 15.2 and iPadOS 15.2. An application may be able to execute arbitrary code with kernel privileges. Se solucionó un problema de desbordamiento del búfer con una administración de la memoria mejorada. Este problema se solucionó en iOS versión 15.2 e iPadOS versión 15.2. • https://support.apple.com/en-us/HT212976 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •