CVE-2021-30889
published 2021-08-24CVE-2021-30889: A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS…
PriorityP352high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
1.93%
77.6th percentile
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to arbitrary code execution.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_15.1_and_ipados | — | — |
| apple | ipados | < 15.1 | 15.1 |
| apple | iphone_os | < 15.1 | 15.1 |
| apple | macos | < 12.0.1 | 12.0.1 |
| apple | macos_monterey | — | — |
| apple | safari | — | — |
| apple | tvos | < 15.1 | 15.1 |
| apple | tvos | — | — |
| apple | watchos | < 8.1 | 8.1 |
| apple | watchos | — | — |
| debian | webkit2gtk | < webkit2gtk 2.34.1-1 (bookworm) | webkit2gtk 2.34.1-1 (bookworm) |
| debian | webkit2gtk | < webkit2gtk 2.32.4-1 (bookworm) | webkit2gtk 2.32.4-1 (bookworm) |
| debian | webkit2gtk | < webkit2gtk 2.34.0-1 (bookworm) | webkit2gtk 2.34.0-1 (bookworm) |
| debian | wpewebkit | < webkit2gtk 2.34.1-1 (bookworm) | webkit2gtk 2.34.1-1 (bookworm) |
| debian | wpewebkit | < webkit2gtk 2.32.4-1 (bookworm) | webkit2gtk 2.32.4-1 (bookworm) |
| debian | wpewebkit | < webkit2gtk 2.34.0-1 (bookworm) | webkit2gtk 2.34.0-1 (bookworm) |
| webkitgtk | webkitgtk | < 2.32.4 | 2.32.4 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
webkitgtk: Buffer overflow leading to arbitrary code execution
vendor_redhat·2021-12-20·CVSS 8.8
CVE-2021-30889 [HIGH] CWE-120 webkitgtk: Buffer overflow leading to arbitrary code execution
webkitgtk: Buffer overflow leading to arbitrary code execution
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to arbitrary code execution.
A buffer overflow flaw was found in WebKitGTK. Specially crafted web content could use this flaw to trigger an arbitrary code execution when processed.
Package: webkitgtk (Red Hat Enterprise Linux 6) - Out of support scope
Package: webkitgtk3 (Red Hat Enterprise Linux 7) - Out of support scope
Package: webkit2gtk3 (Red Hat Enterprise Linux 9) - Not affected
Red Hat
webkitgtk: Incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create
vendor_redhat·2021-12-17·CVSS 8.8
CVE-2021-45481 [HIGH] CWE-401 webkitgtk: Incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create
webkitgtk: Incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create
In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
A segmentation violation vulnerability was found in webkitgtk. An attacker with network access could pass specially crafted HTML files causing an application to halt or crash.
Package: webkitgtk (Red Hat Enterprise Linux 6) - Out of support scope
Package: webkitgtk3 (Red Hat Enterprise Linux 7) - Out of support scope
Package: webkit2gtk3 (Red Hat Enterprise Linux 9) - Not affected
Red Hat
webkitgtk: use-after-free in WebCore::ContainerNode::firstChild
vendor_redhat·2021-12-17·CVSS 8.8
CVE-2021-45482 [HIGH] CWE-416 webkitgtk: use-after-free in WebCore::ContainerNode::firstChild
webkitgtk: use-after-free in WebCore::ContainerNode::firstChild
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.
A use-after-free vulnerability was found in webkitgtk. An attacker with network access could pass specially crafted HTML files causing an application to halt or crash.
Package: webkitgtk (Red Hat Enterprise Linux 6) - Out of support scope
Package: webkitgtk3 (Red Hat Enterprise Linux 7) - Out of support scope
Package: webkit2gtk3 (Red Hat Enterprise Linux 9) - Not affected
Red Hat
webkitgtk: use-after-free in WebCore::Frame::page
vendor_redhat·2021-12-17·CVSS 8.8
CVE-2021-45483 [HIGH] CWE-416 webkitgtk: use-after-free in WebCore::Frame::page
webkitgtk: use-after-free in WebCore::Frame::page
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.
A use-after-free vulnerability was found in webkitgtk. An attacker with network access could pass specially crafted HTML files causing an application to halt or crash.
Package: webkitgtk (Red Hat Enterprise Linux 6) - Out of support scope
Package: webkitgtk3 (Red Hat Enterprise Linux 7) - Out of support scope
Package: webkit2gtk3 (Red Hat Enterprise Linux 9) - Not affected
Apple
CVE-2021-30889: Safari 15.1
vendor_apple·2021-10-27·CVSS 8.8
CVE-2021-30889 [HIGH] CVE-2021-30889: Safari 15.1
Apple Security Update: About the security content of Safari 15.1
Product: Safari
Version: 15.1
CVE: CVE-2021-30889
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A buffer overflow issue was addressed with improved memory handling.
Apple
CVE-2021-30889: tvOS 15.1
vendor_apple·2021-10-25·CVSS 8.8
CVE-2021-30889 [HIGH] CVE-2021-30889: tvOS 15.1
Apple Security Update: About the security content of tvOS 15.1
Product: tvOS
Version: 15.1
CVE: CVE-2021-30889
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A buffer overflow issue was addressed with improved memory handling.
Apple
CVE-2021-30889: watchOS 8.1
vendor_apple·2021-10-25·CVSS 8.8
CVE-2021-30889 [HIGH] CVE-2021-30889: watchOS 8.1
Apple Security Update: About the security content of watchOS 8.1
Product: watchOS
Version: 8.1
CVE: CVE-2021-30889
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A buffer overflow issue was addressed with improved memory handling.
Apple
CVE-2021-30889: iOS 15.1 and iPadOS 15.1
vendor_apple·2021-10-25·CVSS 8.8
CVE-2021-30889 [HIGH] CVE-2021-30889: iOS 15.1 and iPadOS 15.1
Apple Security Update: About the security content of iOS 15.1 and iPadOS 15.1
Product: iOS 15.1 and iPadOS
Version: 15.1
CVE: CVE-2021-30889
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A buffer overflow issue was addressed with improved memory handling.
Apple
CVE-2021-30889: macOS Monterey 12.0.1
vendor_apple·2021-10-25·CVSS 8.8
CVE-2021-30889 [HIGH] CVE-2021-30889: macOS Monterey 12.0.1
Apple Security Update: About the security content of macOS Monterey 12.0.1
Product: macOS Monterey
Version: 12.0.1
CVE: CVE-2021-30889
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A buffer overflow issue was addressed with improved memory handling.
Debian
CVE-2021-30889: webkit2gtk - A buffer overflow issue was addressed with improved memory handling. This issue ...
vendor_debian·2021·CVSS 8.8
CVE-2021-30889 [HIGH] CVE-2021-30889: webkit2gtk - A buffer overflow issue was addressed with improved memory handling. This issue ...
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to arbitrary code execution.
Scope: local
bookworm: resolved (fixed in 2.34.1-1)
bullseye: resolved (fixed in 2.34.1-1~deb11u1)
forky: resolved (fixed in 2.34.1-1)
sid: resolved (fixed in 2.34.1-1)
trixie: resolved (fixed in 2.34.1-1)
Debian
CVE-2021-45482: webkit2gtk - In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode:...
vendor_debian·2021·CVSS 8.8
CVE-2021-45482 [HIGH] CVE-2021-45482: webkit2gtk - In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode:...
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.
Scope: local
bookworm: resolved (fixed in 2.32.4-1)
bullseye: resolved (fixed in 2.32.4-1~deb11u1)
forky: resolved (fixed in 2.32.4-1)
sid: resolved (fixed in 2.32.4-1)
trixie: resolved (fixed in 2.32.4-1)
Debian
CVE-2021-45481: webkit2gtk - In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::Ima...
vendor_debian·2021·CVSS 8.8
CVE-2021-45481 [HIGH] CVE-2021-45481: webkit2gtk - In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::Ima...
In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
Scope: local
bookworm: resolved (fixed in 2.34.0-1)
bullseye: resolved (fixed in 2.34.1-1~deb11u1)
forky: resolved (fixed in 2.34.0-1)
sid: resolved (fixed in 2.34.0-1)
trixie: resolved (fixed in 2.34.0-1)
Debian
CVE-2021-45483: webkit2gtk - In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a...
vendor_debian·2021·CVSS 8.8
CVE-2021-45483 [HIGH] CVE-2021-45483: webkit2gtk - In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a...
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.
Scope: local
bookworm: resolved (fixed in 2.34.0-1)
bullseye: resolved (fixed in 2.34.1-1~deb11u1)
forky: resolved (fixed in 2.34.0-1)
sid: resolved (fixed in 2.34.0-1)
trixie: resolved (fixed in 2.34.0-1)
GHSA
GHSA-73cm-q45j-cwwr: In WebKitGTK before 2
ghsa_unreviewed·2021-12-26·CVSS 8.8
CVE-2021-45482 [HIGH] CWE-416 GHSA-73cm-q45j-cwwr: In WebKitGTK before 2
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.
GHSA
GHSA-p53f-pm5m-wpj7: In WebKitGTK before 2
ghsa_unreviewed·2021-12-26·CVSS 8.8
CVE-2021-45481 [HIGH] CWE-401 GHSA-p53f-pm5m-wpj7: In WebKitGTK before 2
In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
GHSA
GHSA-h8mj-hhrj-rvh6: In WebKitGTK before 2
ghsa_unreviewed·2021-12-26·CVSS 8.8
CVE-2021-45483 [HIGH] CWE-416 GHSA-h8mj-hhrj-rvh6: In WebKitGTK before 2
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.
OSV
CVE-2021-45482: In WebKitGTK before 2
osv·2021-12-25·CVSS 8.8
CVE-2021-45482 [HIGH] CVE-2021-45482: In WebKitGTK before 2
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.
OSV
CVE-2021-45481: In WebKitGTK before 2
osv·2021-12-25·CVSS 8.8
CVE-2021-45481 [HIGH] CVE-2021-45481: In WebKitGTK before 2
In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
OSV
CVE-2021-45483: In WebKitGTK before 2
osv·2021-12-25·CVSS 8.8
CVE-2021-45483 [HIGH] CVE-2021-45483: In WebKitGTK before 2
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.
OSV
CVE-2021-30889: A buffer overflow issue was addressed with improved memory handling
osv·2021-08-24·CVSS 8.8
CVE-2021-30889 [HIGH] CVE-2021-30889: A buffer overflow issue was addressed with improved memory handling
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to arbitrary code execution.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.openwall.com/lists/oss-security/2021/12/20/6https://support.apple.com/en-us/HT212867https://support.apple.com/en-us/HT212869https://support.apple.com/en-us/HT212874https://support.apple.com/en-us/HT212876http://www.openwall.com/lists/oss-security/2021/12/20/6https://support.apple.com/en-us/HT212867https://support.apple.com/en-us/HT212869https://support.apple.com/en-us/HT212874https://support.apple.com/en-us/HT212876
2021-08-24
Published