VDB
VAR-202109-1350
VAR-202109-1350
PUBLISHED
A memory corruption issue in the ASN.1 decoder was addressed by removing the vulnerable code. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, iOS 12.5.4, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously crafted certificate may lead to arbitrary code execution.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | macOS | unspecified, unspecified, unspecified |
| Apple | iOS and iPadOS | unspecified |
Timeline
- Jan 25, 2021 CVE Published
References
- https://support.apple.com/en-us/HT212533 url
- https://support.apple.com/en-us/HT212530 url
- https://support.apple.com/en-us/HT212531 url
- https://support.apple.com/en-us/HT212548 url
- https://support.apple.com/en-us/HT212528 url
- https://support.apple.com/en-us/HT212529 url
- https://support.apple.com/en-us/HT212532 url