This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted dfont file may lead to arbitrary code execution.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT212819 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT212807 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT212804 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT212815 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT212805 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT212814 | Release Notes Vendor Advisory |
http://seclists.org/fulldisclosure/2021/Oct/63 | Mailing List Release Notes Third Party Advisory |
http://seclists.org/fulldisclosure/2021/Oct/62 | Mailing List Release Notes Third Party Advisory |
http://seclists.org/fulldisclosure/2021/Oct/61 | Mailing List Release Notes Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2021-10-19 07:15
Updated : 2021-11-05 14:31
NVD link : CVE-2021-30841
Mitre link : CVE-2021-30841
JSON object : View
CWE
Products Affected
apple
- tvos
- macos
- mac_os_x
- watchos
- iphone_os
- ipados