CVE-2021-30911: An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.0.1, Security Update 2021-007 Catalina, iOS 15.1…

medium5.5CVSS 3.1

AVLACLPRNUIRSUCHINAN

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.0.1, Security Update 2021-007 Catalina, iOS 15.1 and iPadOS 15.1, macOS Big Sur 11.6.1. Processing a maliciously crafted USD file may disclose memory contents.

Affected

14 ranges

Vendor	Product	Version range	Fixed in
apple	ios_15.1_and_ipados	—	—
apple	ios_and_ipados	>= unspecified < 15.1	15.1
apple	ipados	< 15.1	15.1
apple	iphone_os	< 15.1	15.1
apple	mac_os_x	< 10.15.7	10.15.7
apple	mac_os_x	—	—
apple	macos	—	—
apple	macos	>= 11.0 < 11.6.1	11.6.1
apple	macos	>= unspecified < 12.0	12.0
apple	macos	>= unspecified < 2021	2021
apple	macos	>= unspecified < 11.6	11.6
apple	macos_big_sur	—	—
apple	macos_monterey	—	—
apple	security_update_2021-007_catalina	—	—