CVE-2021-30771

Summary

An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.4, iOS 14.6 and iPadOS 14.6, watchOS 7.5, tvOS 14.6. Processing a maliciously crafted font file may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 14.6affected
ApplemacOSunspecified < 11.4affected
AppletvOSunspecified < 14.6affected
ApplewatchOSunspecified < 7.5affected

Weaknesses

  • Processing a maliciously crafted font file may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

References