Impact: Processing a maliciously crafted tiff file may lead to a denial-of-service or potentially disclose memory contentsĬVE-2021-30788: tr3e working with Trend Micro Zero Day Initiative Impact: A sandboxed process may be able to circumvent sandbox restrictionsĬVE-2021-30768: Linus Henze ()ĭescription: An integer overflow was addressed through improved input validation.ĬVE-2021-30760: Sunglin of Knownsec 404 teamĭescription: A stack overflow was addressed with improved input validation.ĬVE-2021-30759: hjy79425575 working with Trend Micro Zero Day Initiative Impact: Processing a maliciously crafted font may result in the disclosure of process memoryĬVE-2021-30733: Sunglin from the Knownsec 404ĭescription: An out-of-bounds write issue was addressed with improved bounds checking.ĬVE-2021-30780: Tim of Zoom Video Communications
UPDATES FOR MAC OS 9 CODE
Impact: Processing a maliciously crafted font file may lead to arbitrary code executionĭescription: An out-of-bounds read was addressed with improved input validation.ĬVE-2021-30789: Sunglin of Knownsec 404 team, Mickey Jin of Trend Micro Impact: Playing a malicious audio file may lead to an unexpected application terminationĭescription: A logic issue was addressed with improved validation.ĬVE-2021-30776: JunDong Xie of Ant Security Light-Year Labĭescription: An injection issue was addressed with improved validation.ĬVE-2021-30777: Tim of Zoom Video Communications and Gary Nield of ECSC Group plc Impact: Processing a maliciously crafted audio file may lead to arbitrary code executionĬVE-2021-30775: JunDong Xie of Ant Security Light-Year Lab Impact: A malicious application may be able to gain root privilegesĭescription: A memory corruption issue was addressed with improved state management. Impact: A local attacker may be able to cause unexpected application termination or arbitrary code executionĭescription: This issue was addressed with improved checks. Impact: Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code executionĭescription: An information disclosure issue was addressed by removing the vulnerable code.ĬVE-2021-30790: hjy79425575 working with Trend Micro Zero Day Initiative Impact: An application may be able to execute arbitrary code with kernel privilegesĭescription: A memory corruption issue was addressed with improved input validation. Here’s a look at all the security fixes for macOS Catalina:
UPDATES FOR MAC OS 9 UPDATE
On your Mac head to System Preferences > Software Update or > About This Mac > Software Update to see if the updates are ready for you. For many users, the risk of these security issues may be low but with some being potentially serious these are important updates to install. There are 20+ security fixes for macOS Catalina and Mojave.
Fixes included are for flaws that could lead to malicious applications gaining root access, arbitrary code being executed with kernel privileges, and more. Along with macOS 11.5 being released, security updates have arrived for both macOS Catalina and Mojave.
0 kommentar(er)
