CVE-2021-30795 – webkitgtk: Use-after-free leading to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-30795
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de uso de memoria previamente liberada con una administración de memoria mejorada. Este problema se corrigió en iOS versión 14.7, Safari versión 14.1.2, macOS Big Sur versión 11.5, watchOS versión 7.6, tvOS versión 14.7. • https://support.apple.com/en-us/HT212601 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212604 https://support.apple.com/en-us/HT212605 https://support.apple.com/en-us/HT212606 https://access.redhat.com/security/cve/CVE-2021-30795 https://bugzilla.redhat.com/show_bug.cgi?id=1986900 • CWE-20: Improper Input Validation CWE-416: Use After Free •
CVE-2021-30798
https://notcve.org/view.php?id=CVE-2021-30798
A logic issue was addressed with improved state management. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6. A malicious application may be able to bypass certain Privacy preferences. Se abordó un problema lógico con una administración de estado mejorada. Este problema se corrigió en iOS versión 14.7, macOS Big Sur versión 11.5, watchOS versión 7.6. • https://support.apple.com/en-us/HT212601 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212605 •
CVE-2021-30796 – Apple macOS ModelIO USD File Parsing Out-Of-Bounds Write Remote Code Execute Vulnerability
https://notcve.org/view.php?id=CVE-2021-30796
A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. Processing a maliciously crafted image may lead to a denial of service. Se abordó un problema lógico con una comprobación mejorada. Este problema se corrigió en iOS versión 14.7, macOS Big Sur versión 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212601 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 •
CVE-2021-30799 – webkitgtk: Memory corruptions leading to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-30799
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordaron múltiples problemas de corrupción de la memoria con una administración de memoria mejorada. Este problema se corrigió en iOS versión 14.7, macOS Big Sur versión 11.5, Security Update 2021-004 Catalina y Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212601 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 https://access.redhat.com/security/cve/CVE-2021-30799 https://bugzilla.redhat.com/show_bug.cgi?id=1986906 • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •
CVE-2021-30733
https://notcve.org/view.php?id=CVE-2021-30733
An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously crafted font may result in the disclosure of process memory. Se abordó una lectura fuera de límites con una comprobación de entrada mejorada. Este problema se corrigió en tvOS versión 14.6, iOS versión 14.6 e iPadOS versión 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur versión 11.4, watchOS versión 7.5. • https://support.apple.com/en-us/HT212528 https://support.apple.com/en-us/HT212529 https://support.apple.com/en-us/HT212532 https://support.apple.com/en-us/HT212533 https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212603 • CWE-125: Out-of-bounds Read •