CVE-2024-27876 — Race Condition in Apple IOS AND Ipados

Vendor	Product	Version range	Fixed in
apple	ios_17.7_and_ipados	—	—
apple	ios_18_and_ipados	—	—
apple	ios_and_ipados	< 17.7	17.7
apple	ios_and_ipados	< 18	18
apple	ipados	< 17.7	17.7
apple	iphone_os	< 17.7	17.7
apple	macos	< 13.7	13.7
apple	macos	< 14.7	14.7
apple	macos	< 15	15
apple	macos	>= 13.0 < 13.7	13.7
apple	macos	>= 14.0 < 14.7	14.7
apple	macos_sequoia	—	—
apple	macos_sonoma	—	—
apple	macos_ventura	—	—
apple	visionos	< 2	2
apple	visionos	< 2.0	2.0
apple	visionos2	—	—

Apple

CVE-2024-27876: macOS Ventura 13.7

vendor_apple·2024-09-16·CVSS 5.5

CVE-2024-27876 [MEDIUM] CVE-2024-27876: macOS Ventura 13.7 Apple Security Update: About the security content of macOS Ventura 13.7 Product: macOS Ventura Version: 13.7 CVE: CVE-2024-27876 Component: Compression Impact: Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files Description: A race condition was addressed with improved locking.

Apple

CVE-2024-27876: iOS 17.7 and iPadOS 17.7

vendor_apple·2024-09-16·CVSS 5.5

CVE-2024-27876 [MEDIUM] CVE-2024-27876: iOS 17.7 and iPadOS 17.7 Apple Security Update: About the security content of iOS 17.7 and iPadOS 17.7 Product: iOS 17.7 and iPadOS Version: 17.7 CVE: CVE-2024-27876 Component: Compression Impact: Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files Description: A race condition was addressed with improved locking.

Apple

CVE-2024-27876: macOS Sonoma 14.7

vendor_apple·2024-09-16·CVSS 5.5

CVE-2024-27876 [MEDIUM] CVE-2024-27876: macOS Sonoma 14.7 Apple Security Update: About the security content of macOS Sonoma 14.7 Product: macOS Sonoma Version: 14.7 CVE: CVE-2024-27876 Component: Compression Impact: Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files Description: A race condition was addressed with improved locking.

Apple

CVE-2024-27876: visionOS2

vendor_apple·2024-09-16·CVSS 5.5

CVE-2024-27876 [MEDIUM] CVE-2024-27876: visionOS2 Apple Security Update: About the security content of visionOS2 Product: visionOS2 CVE: CVE-2024-27876 Component: Compression Impact: Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files Description: A race condition was addressed with improved locking.

Apple

CVE-2024-27876: macOS Sequoia 15

vendor_apple·2024-09-16·CVSS 5.5

CVE-2024-27876 [MEDIUM] CVE-2024-27876: macOS Sequoia 15 Apple Security Update: About the security content of macOS Sequoia 15 Product: macOS Sequoia Version: 15 CVE: CVE-2024-27876 Component: Compression Impact: Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files Description: A race condition was addressed with improved locking.

Apple

CVE-2024-27876: iOS 18 and iPadOS 18

vendor_apple·2024-09-16·CVSS 5.5

CVE-2024-27876 [MEDIUM] CVE-2024-27876: iOS 18 and iPadOS 18 Apple Security Update: About the security content of iOS 18 and iPadOS 18 Product: iOS 18 and iPadOS Version: 18 CVE: CVE-2024-27876 Component: Compression Impact: Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files Description: A race condition was addressed with improved locking.

GHSA

GHSA-976w-rfcm-5cfg: A race condition was addressed with improved locking

ghsa_unreviewed·2024-09-17

CVE-2024-27876 [HIGH] CWE-362 GHSA-976w-rfcm-5cfg: A race condition was addressed with improved locking A race condition was addressed with improved locking. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, iOS 18 and iPadOS 18, macOS Sonoma 14.7, macOS Sequoia 15. Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files.

CVE-2024-27876: A race condition was addressed with improved locking. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma…

Affected