Impact: a remote attacker may be able to leak memoryĭescription: An out-of-bounds read was addressed with improved bounds checking.ĬVE-2020-29608: Xingwei Lin of Ant Security Light-Year LabĪvailable for: macOS Big Sur 11.0.1 and macOS Catalina 10.15.7ĭescription: an access issue was addressed with improved memory management.ĬVE-2021-1783: Xingwei Lin of Ant Security Light-Year Lab
#MACOS BIG SUR REVIEWS 2021 CODE#
Impact: processing a maliciously crafted font may lead to arbitrary code executionĬVE-2021-1790: Peter Nguyen Vu Hoang of STAR Labsĭescription: this issue was addressed by removing the vulnerable code.ĬVE-2021-1775: Mickey Jin and Qi Sun of Trend Micro working with Trend Micro’s Zero Day Initiative
This was addressed with improved input validation.ĬVE-2021-1791: Junzhi Lu Qi Sun & Mickey Jin of Trend Micro working with Trend Micro’s Zero Day Initiative Impact: a malicious application may be able to disclose kernel memoryĭescription: an out-of-bounds read issue existed that led to the disclosure of kernel memory. Impact: a malicious application may be able to access private informationĬVE-2020-27937: Wojciech Reguła of SecuRingĬVE-2021-1802: Zhongcheng Li of WPS Security Response Center Impact: a local user may be able to create or modify system files.ĭescription: a logic issue was addressed with improved state management.ĬVE-2021-1786: Csaba Fitzl of Offensive Security Impact: a local attacker may be able to elevate their privilegesĭescription: multiple issues were addressed with improved logic. Impact: A remote attacker may be able to cause arbitrary code executionĭescription: an out-of-bounds read was addressed with improved bounds checking.ĬVE-2021-1792: Mickey Jin and Junzhi Lu of Trend Micro (working with Trend Micro’s Zero Day Initiative) Impact: Processing a maliciously crafted text file may lead to arbitrary code executionĭescription: a stack overflow was addressed with improved input validation.ĬVE-2021-1772: Mickey Jin of Trend Micro working with Trend Micro’s Zero Day Initiative Impact: processing a maliciously crafted image may lead to arbitrary code executionĭescription: an out-of-bounds read was addressed with improved input validation.ĬVE-2021-1759: Hou JingYi of Qihoo 360 CERT Impact: processing a maliciously crafted font file may lead to arbitrary code executionĭescription: an out-of-bounds write issue was addressed with improved bounds checking.ĬVE-2021-1776: Ivan Fratric of Google Project Zero Impact: processing maliciously crafted web content may lead to code executionĭescription: an out-of-bounds write was addressed with improved input validation.ĬVE-2021-1747: JunDong Xie of Ant Security Light-Year LabĪvailable for: macOS Mojave 10.14.6, macOS Catalina 10.15.7, macOS Big Sur 11.0.1 Impact: a malicious application could execute arbitrary code, which could lead to user information being compromisedĭescription: A memory corruption issue was addressed with improved state management.
Impact: processing maliciously crafted web content may lead to arbitrary code executionĭescription: an integer overflow was addressed with improved input validation.ĬVE-2020-27945: Zhuo Liang of Qihoo 360 Vulcan Team Impact: a local user may be able to read arbitrary filesĭescription: the issue was addressed with improved permissions logic.Īvailable for: macOS Catalina 10.15.7 and macOS Mojave 10.14.6 Impact: a remote attacker may be able to cause a denial of serviceĭescription: this issue was addressed with improved checks. Available for: macOS Big Sur 11.0.1, macOS Catalina 10.15.7 and macOS Mojave 10.14.6
0 kommentar(er)
