CVE-2020-29617
published 2021-04-02CVE-2020-29617: An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, iCloud for Windows 12.0, watchOS 7.2. Processing a maliciously crafted image may lead to heap corruption.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | icloud | < 12.0 | 12.0 |
| apple | ios_and_ipados | >= unspecified < 14.3 | 14.3 |
| apple | ipados | < 14.3 | 14.3 |
| apple | iphone_os | < 14.3 | 14.3 |
| apple | mac_os_x | — | — |
| apple | mac_os_x | — | — |
| apple | mac_os_x | >= 10.14 < 10.14.6 | 10.14.6 |
| apple | mac_os_x | >= 10.15 < 10.15.7 | 10.15.7 |
| apple | macos | >= 11.0 < 11.1.0 | 11.1.0 |
| apple | macos | >= unspecified < 11.1 | 11.1 |
| apple | macos | >= unspecified < 12.0 | 12.0 |
| apple | tvos | < 14.3 | 14.3 |
| apple | tvos | >= unspecified < 14.3 | 14.3 |
| apple | watchos | < 7.2 | 7.2 |
| apple | watchos | >= unspecified < 7.2 | 7.2 |