CVE-2021-30789

Summary

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-004 Catalina. Processing a maliciously crafted font file may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AppleSecurity Update - Catalinaunspecified < 2021affected
AppleiOSunspecified < 14.7affected
ApplemacOSunspecified < 11.5affected
ApplemacOSunspecified < 14.7affected
ApplemacOSunspecified < 7.6affected

Weaknesses

  • Processing a maliciously crafted font file may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

References