CVE-2021-1811
Description
A logic issue was addressed with improved state management. This issue is fixed in iTunes 12.11.3 for Windows, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iCloud for Windows 12.3, macOS Big Sur 11.3, watchOS 7.4, tvOS 14.5, iOS 14.5 and iPadOS 14.5. Processing a maliciously crafted font may result in the disclosure of process memory.
CWE
- (none)
Affected
- Apple / iOS and iPadOS — v=unspecified <14.5 [affected]
- Apple / iTunes for Windows — v=unspecified <12.11 [affected]
- Apple / iCloud for Windows — v=unspecified <12.3 [affected]
- Apple / tvOS — v=unspecified <14.5 [affected]
- Apple / watchOS — v=unspecified <7.4 [affected]
- Apple / macOS — v=unspecified <11.3 [affected]
- Apple / macOS — v=unspecified <2021 [affected]
- Apple / macOS — v=unspecified <2021 [affected]
CVSS
- (none)
References
- https://support.apple.com/en-us/HT212317 x_refsource_MISC
- https://support.apple.com/en-us/HT212323 x_refsource_MISC
- https://support.apple.com/en-us/HT212324 x_refsource_MISC
- https://support.apple.com/en-us/HT212325 x_refsource_MISC
- https://support.apple.com/en-us/HT212326 x_refsource_MISC
- https://support.apple.com/en-us/HT212327 x_refsource_MISC
- https://support.apple.com/en-us/HT212319 x_refsource_MISC
- https://support.apple.com/en-us/HT212321 x_refsource_MISC
Source
cvelistV5-main/cves/2021/1xxx/CVE-2021-1811.json