CVE-2020-9890

State: PUBLISHED · Published: 2020-10-16 · Updated: 2024-08-04 · Assigner: apple

Description

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted audio file may lead to arbitrary code execution.

CWE

(none)

Affected

Apple / iOS — v=unspecified <iOS 13.6 and iPadOS 13.6 [affected]
Apple / macOS — v=unspecified <macOS Catalina 10.15.6 [affected]
Apple / tvOS — v=unspecified <tvOS 13.4.8 [affected]
Apple / watchOS — v=unspecified <watchOS 6.2.8 [affected]

CVSS

(none)

References

https://support.apple.com/HT211289 x_refsource_MISC
https://support.apple.com/HT211288 x_refsource_MISC
https://support.apple.com/HT211290 x_refsource_MISC
https://support.apple.com/HT211291 x_refsource_MISC

Source

cvelistV5-main/cves/2020/9xxx/CVE-2020-9890.json