CVE-2021-30889 — Classic Buffer Overflow in Apple Ipados

CWE-120 — Classic Buffer Overflow CWE-401 — Missing Release of Memory after Effective Lifetime CWE-416 — Use After Free24 documents6 sources

Severity

8.8HIGHNVD

NVD6.5

EPSS

0.7%

top 28.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Ipados Apple Iphone OS Apple Macos +8 more

Timeline

PublishedAug 24

Latest updateDec 26

Description

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to arbitrary code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages13 packages

▶Appleapple/macos_monterey12.0.1

▶NVDapple/tvos< 15.1

▶NVDapple/macos< 12.0.1

▶NVDapple/ipados< 15.1

▶NVDapple/watchos< 8.1

🔴Vulnerability Details

GHSA

GHSA-73cm-q45j-cwwr: In WebKitGTK before 2↗2021-12-26

▶

GHSA

GHSA-p53f-pm5m-wpj7: In WebKitGTK before 2↗2021-12-26

▶

GHSA

GHSA-h8mj-hhrj-rvh6: In WebKitGTK before 2↗2021-12-26

▶

OSV

CVE-2021-45482: In WebKitGTK before 2↗2021-12-25

▶

OSV

CVE-2021-45481: In WebKitGTK before 2↗2021-12-25

▶

📋Vendor Advisories

Red Hat

webkitgtk: Buffer overflow leading to arbitrary code execution↗2021-12-20

▶

Red Hat

webkitgtk: Incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create↗2021-12-17

▶

Red Hat

webkitgtk: use-after-free in WebCore::ContainerNode::firstChild↗2021-12-17

▶

Red Hat

webkitgtk: use-after-free in WebCore::Frame::page↗2021-12-17

▶

Apple

CVE-2021-30889: Safari 15.1↗2021-10-27

▶