CVE-2020-9854
https://notcve.org/view.php?id=CVE-2020-9854
A logic issue was addressed with improved validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5. An application may be able to gain elevated privileges. Se abordó un problema lógico con una comprobación mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5, tvOS versión 13.4.5. • https://support.apple.com/kb/HT211168 https://support.apple.com/kb/HT211170 https://support.apple.com/kb/HT211171 •
CVE-2020-9828
https://notcve.org/view.php?id=CVE-2020-9828
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A remote attacker may be able to leak sensitive user information. Se abordó una lectura fuera de límites con una comprobación de entrada mejorada. Este problema es corregido en macOS Catalina versión 10.15.4. • https://support.apple.com/kb/HT211100 • CWE-125: Out-of-bounds Read •
CVE-2020-9853
https://notcve.org/view.php?id=CVE-2020-9853
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to determine kernel memory layout. Se abordó un problema de corrupción de la memoria con una comprobación mejorada. Este problema es corregido en macOS Catalina versión 10.15.4. • https://support.apple.com/kb/HT211100 • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •
CVE-2020-9772
https://notcve.org/view.php?id=CVE-2020-9772
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A sandboxed process may be able to circumvent sandbox restrictions. Se abordó un problema lógico con unas restricciones mejoradas. Este problema es corregido en iOS versión 13.4 y iPadOS versión 13.4, macOS Catalina versión 10.15.4, tvOS versión 13.4, watchOS versión 6.2. • https://support.apple.com/kb/HT211100 https://support.apple.com/kb/HT211101 https://support.apple.com/kb/HT211102 https://support.apple.com/kb/HT211103 •
CVE-2020-9796
https://notcve.org/view.php?id=CVE-2020-9796
A race condition was addressed with improved state handling. This issue is fixed in macOS Catalina 10.15.5. An application may be able to execute arbitrary code with kernel privileges. Se abordó una condición de carrera con un manejo de estado mejorado. Este problema es corregido en macOS Catalina versión 10.15.5. • https://support.apple.com/kb/HT211170 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •