CVE-2021-30849
Description
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, watchOS 8, Safari 15, tvOS 15, iOS 15 and iPadOS 15, iTunes 12.12 for Windows. Processing maliciously crafted web content may lead to arbitrary code execution.
CWE
- (none)
Affected
- Apple / iOS and iPadOS — v=unspecified <14.8 [affected]
- Apple / iOS and iPadOS — v=unspecified <15 [affected]
- Apple / tvOS — v=unspecified <15 [affected]
- Apple / Safari — v=unspecified <15 [affected]
- Apple / iTunes for Windows — v=unspecified <12.12 [affected]
- Apple / watchOS — v=unspecified <8 [affected]
CVSS
- (none)
References
- https://support.apple.com/en-us/HT212807 x_refsource_MISC
- https://support.apple.com/en-us/HT212814 x_refsource_MISC
- https://support.apple.com/en-us/HT212819 x_refsource_MISC
- https://support.apple.com/en-us/HT212815 x_refsource_MISC
- https://support.apple.com/en-us/HT212817 x_refsource_MISC
- https://support.apple.com/en-us/HT212816 x_refsource_MISC
- http://www.openwall.com/lists/oss-security/2021/10/26/9 mailing-list, x_refsource_MLIST
- http://www.openwall.com/lists/oss-security/2021/10/27/1 mailing-list, x_refsource_MLIST
- http://www.openwall.com/lists/oss-security/2021/10/27/2 mailing-list, x_refsource_MLIST
- http://seclists.org/fulldisclosure/2021/Oct/60 mailing-list, x_refsource_FULLDISC
- http://seclists.org/fulldisclosure/2021/Oct/62 mailing-list, x_refsource_FULLDISC
- http://seclists.org/fulldisclosure/2021/Oct/63 mailing-list, x_refsource_FULLDISC
- http://seclists.org/fulldisclosure/2021/Oct/61 mailing-list, x_refsource_FULLDISC
- http://www.openwall.com/lists/oss-security/2021/10/27/4 mailing-list, x_refsource_MLIST
- https://support.apple.com/kb/HT212869 x_refsource_CONFIRM
- https://support.apple.com/kb/HT212953 x_refsource_CONFIRM
Source
cvelistV5-main/cves/2021/30xxx/CVE-2021-30849.json