CVE-2020-9961
N/A
N/A
Summary
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. Processing a maliciously crafted image may lead to arbitrary code execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Apple | macOS | unspecified < 10.15 | affected |
Weaknesses
- Processing a maliciously crafted image may lead to arbitrary code execution
ADP Enrichment
CVE Program Container
Additional References
- https://support.apple.com/kb/HT211843
- https://support.apple.com/kb/HT211850
- https://support.apple.com/kb/HT211844
- https://support.apple.com/en-us/HT211849
- https://support.apple.com/kb/HT211952
- http://seclists.org/fulldisclosure/2020/Nov/19
- http://seclists.org/fulldisclosure/2020/Nov/20
- http://seclists.org/fulldisclosure/2020/Nov/22
- http://seclists.org/fulldisclosure/2020/Nov/21
- https://support.apple.com/kb/HT211935
References
- https://support.apple.com/kb/HT211843
- https://support.apple.com/kb/HT211850
- https://support.apple.com/kb/HT211844
- https://support.apple.com/en-us/HT211849
- https://support.apple.com/kb/HT211952
- http://seclists.org/fulldisclosure/2020/Nov/19
- http://seclists.org/fulldisclosure/2020/Nov/20
- http://seclists.org/fulldisclosure/2020/Nov/22
- http://seclists.org/fulldisclosure/2020/Nov/21
- https://support.apple.com/kb/HT211935
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.