This issue was addressed with improved checks. This issue is fixed in Security Update 2021-005 Catalina, iTunes 12.12 for Windows, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted image may lead to arbitrary code execution.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT212819 | Vendor Advisory |
https://support.apple.com/en-us/HT212817 | Vendor Advisory |
https://support.apple.com/en-us/HT212815 | Vendor Advisory |
https://support.apple.com/en-us/HT212805 | Vendor Advisory |
https://support.apple.com/en-us/HT212814 | Vendor Advisory |
http://seclists.org/fulldisclosure/2021/Oct/63 | Mailing List Release Notes Third Party Advisory |
http://seclists.org/fulldisclosure/2021/Oct/62 | Mailing List Release Notes Third Party Advisory |
http://seclists.org/fulldisclosure/2021/Oct/61 | Mailing List Release Notes Third Party Advisory |
https://support.apple.com/kb/HT212953 | Vendor Advisory |
https://support.apple.com/kb/HT212804 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2021-10-19 07:15
Updated : 2022-02-11 06:38
NVD link : CVE-2021-30835
Mitre link : CVE-2021-30835
JSON object : View
CWE
Products Affected
apple
- itunes
- tvos
- macos
- mac_os_x
- watchos
- iphone_os
- ipados