CVE-2021-30778
https://notcve.org/view.php?id=CVE-2021-30778
This issue was addressed with improved entitlements. This issue is fixed in macOS Big Sur 11.5. A malicious application may be able to bypass Privacy preferences. Este problema se abordó con los derechos mejorados. Este problema se corrigió en macOS Big Sur versión 11.5. • https://support.apple.com/en-us/HT212602 •
CVE-2021-30772
https://notcve.org/view.php?id=CVE-2021-30772
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.5. A malicious application may be able to gain root privileges. Se abordó este problema con comprobaciones mejoradas. Este problema se corrigió en macOS Big Sur versión 11.5. • https://support.apple.com/en-us/HT212602 https://support.apple.com/kb/HT212600 https://support.apple.com/kb/HT212603 •
CVE-2021-30765
https://notcve.org/view.php?id=CVE-2021-30765
An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges. Se abordó una escritura fuera de límites con una comprobación de entrada mejorada. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 • CWE-787: Out-of-bounds Write •
CVE-2021-30758 – webkitgtk: Type confusion leading to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-30758
A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de confusión de tipo con un manejo de estado mejorado. Este problema se corrigió en iOS versión 14.7, Safari versión 14.1.2, macOS Big Sur versión 11.5, watchOS versión 7.6, tvOS versión 14.7. • https://support.apple.com/en-us/HT212601 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212604 https://support.apple.com/en-us/HT212605 https://support.apple.com/en-us/HT212606 https://access.redhat.com/security/cve/CVE-2021-30758 https://bugzilla.redhat.com/show_bug.cgi?id=1986892 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVE-2021-30781
https://notcve.org/view.php?id=CVE-2021-30781
This issue was addressed with improved checks. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-005 Mojave, Security Update 2021-004 Catalina. A local attacker may be able to cause unexpected application termination or arbitrary code execution. Este problema se corrigió con comprobaciones mejoradas. Este problema se corrigió en iOS versión 14.7, macOS Big Sur versión 11.5, watchOS versión 7.6, tvOS versión 14.7, Security Update 2021-005 Mojave, Security Update 2021-004 Catalina. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212601 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 https://support.apple.com/en-us/HT212604 https://support.apple.com/en-us/HT212605 •