Apple Security Update 2022-001 Catalina vulnerabilities

CVE-2022-22579 [HIGH] CVE-2022-22579: Security Update 2022-001 Catalina Apple Security Update: About the security content of Security Update 2022-001 Catalina Product: Security Update 2022-001 Catalina CVE: CVE-2022-22579 Component: Model I/O Impact: Processing a maliciously crafted STL file may lead to unexpected application termination or arbitrary code execution Description: An information disclosure issue was addressed with improved state management.

CVE-2022-22593 [HIGH] CVE-2022-22593: Security Update 2022-001 Catalina Apple Security Update: About the security content of Security Update 2022-001 Catalina Product: Security Update 2022-001 Catalina CVE: CVE-2022-22593 Component: Kernel Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2021-30946 [MEDIUM] CVE-2021-30946: Security Update 2022-001 Catalina Apple Security Update: About the security content of Security Update 2022-001 Catalina Product: Security Update 2022-001 Catalina CVE: CVE-2021-30946 Component: Sandbox Impact: A malicious application may be able to bypass certain Privacy preferences Description: A logic issue was addressed with improved restrictions.

CVE-2022-22583 [MEDIUM] CVE-2022-22583: Security Update 2022-001 Catalina Apple Security Update: About the security content of Security Update 2022-001 Catalina Product: Security Update 2022-001 Catalina CVE: CVE-2022-22583 Component: PackageKit Impact: An application may be able to access restricted files Description: A permissions issue was addressed with improved validation.

CVE-2021-30972 [MEDIUM] CVE-2021-30972: Security Update 2022-001 Catalina Apple Security Update: About the security content of Security Update 2022-001 Catalina Product: Security Update 2022-001 Catalina CVE: CVE-2021-30972 Component: TCC Impact: A malicious application may be able to bypass certain Privacy preferences Description: This issue was addressed with improved checks.