CVE-2021-30934

Description

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution.

CVSS Metrics

• v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
• v2.0•HIGH•Score: 9.3AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 1.69%• Percentile: 82%

Techniques & Countermeasures

• CWE-120•Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

  The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

Affected Systems

• Unknown•iOS and iPadOS

  ≥ unspecified, < 15.2

• apple•ipados

  < 15.2

• apple•iphone_os

  < 15.2

• Unknown•macOS

  ≥ 12.0, < 12.1 | ≥ unspecified, < 12.1 | ≥ unspecified, < 15.2

• apple•safari

  < 15.2

• apple•tvos

  < 15.2

• apple•watchos

  < 8.3 | ≥ unspecified, < 8.3

• debian•debian_linux

  10.0 | 11.0

• fedoraproject•fedora

  34 | 35

References (10)

• https://support.apple.com/en-us/HT212975
• https://support.apple.com/en-us/HT212976
• https://support.apple.com/en-us/HT212978
• https://support.apple.com/en-us/HT212980
• https://support.apple.com/en-us/HT212982
• http://www.openwall.com/lists/oss-security/2022/01/21/2
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7EQVZ3CEMTINLBZ7PBC7WRXVEVCRHNSM/
• https://www.debian.org/security/2022/dsa-5061
• https://www.debian.org/security/2022/dsa-5060
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HQKWD4BXRDD2YGR5AVU7H5J5PIQIEU6V/