Apple Imovie vulnerabilities

CVE-2021-30757 [MEDIUM] CVE-2021-30757: This issue was addressed by enabling hardened runtime. This issue is fixed in iMovie 10.2.4. Entitle This issue was addressed by enabling hardened runtime. This issue is fixed in iMovie 10.2.4. Entitlements and privacy permissions granted to this app may be used by a malicious app.

CVE-2007-0646 [HIGH] CWE-134 CVE-2007-0646: Format string vulnerability in iMovie HD 6.0.3, and Safari in Apple Mac OS X 10.4 through 10.4.10, a Format string vulnerability in iMovie HD 6.0.3, and Safari in Apple Mac OS X 10.4 through 10.4.10, allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in a filename, which is not properly handled when calling the NSRunCriticalAlertPanel Apple AppKit function.