CVE-2020-9794
Description
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. A malicious application may cause a denial of service or potentially disclose memory contents.
CWE
- (none)
Affected
- Apple / iOS — v=unspecified <iOS 13.5 and iPadOS 13.5 [affected]
- Apple / macOS — v=unspecified <macOS Catalina 10.15.5 [affected]
- Apple / tvOS — v=unspecified <tvOS 13.4.5 [affected]
- Apple / watchOS — v=unspecified <watchOS 6.2.5 [affected]
- Apple / iTunes for Windows — v=unspecified <iTunes 12.10.7 for Windows [affected]
- Apple / iCloud for Windows — v=unspecified <iCloud for Windows 11.2 [affected]
- Apple / iCloud for Windows (Legacy) — v=unspecified <iCloud for Windows 7.19 [affected]
CVSS
- (none)
References
- https://support.apple.com/HT211168 x_refsource_MISC
- https://support.apple.com/HT211170 x_refsource_MISC
- https://support.apple.com/HT211171 x_refsource_MISC
- https://support.apple.com/HT211175 x_refsource_MISC
- https://support.apple.com/HT211178 x_refsource_MISC
- https://support.apple.com/HT211179 x_refsource_MISC
- https://support.apple.com/HT211181 x_refsource_MISC
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E mailing-list, x_refsource_MLIST
Source
cvelistV5-main/cves/2020/9xxx/CVE-2020-9794.json