Impact: curl could potentially reveal sensitive internal information to the server using a clear-text network protocolĭescription: A buffer overflow was addressed with improved input validation.ĭescription: A memory corruption issue was addressed with improved state management.ĬVE-2021-30832: Mickey Jin of Trend Micro Impact: A local user may be able to execute arbitrary filesĭescription: A URI parsing issue was addressed with improved parsing.ĬVE-2021-30829: Nathan Nye of WhiteBeam Security, Inc. Impact: A local user may be able to read arbitrary files as rootĭescription: This issue was addressed with improved checks.ĬVE-2021-30828: Nathan Nye of WhiteBeam Security, Inc. This issue was addressed with improved permission validation.ĬVE-2021-30827: Nathan Nye of WhiteBeam Security, Inc.Įntry added September 20, 2021, updated May 25, 2022 Impact: A local attacker may be able to elevate their privilegesĭescription: A permissions issue existed.
Impact: A sandboxed process may be able to circumvent sandbox restrictions. Apple was aware of a report that this issue may have been actively exploited at the time of release.ĭescription: A deserialization issue was addressed through improved validation.ĬVE-2021-31010: Citizen Lab and Google Project Zero Impact: A sandboxed process may be able to circumvent sandbox restrictionsĭescription: An access issue was addressed with improved access restrictions.ĬVE-2021-30783: an anonymous researcher, Ron Hass of Perception Point Apple is aware of a report that this issue may have been actively exploited.ĭescription: An integer overflow was addressed with improved input validation.
#Macos catalina list of macos components pdf#
Impact: Processing a maliciously crafted PDF may lead to arbitrary code execution.
0 kommentar(er)
