Apple releases security updates for macOS Mojave and macOS Catalina

Earlier as we speak, Apple launched macOS Huge Sur 11.5 to the general public. As well as, the corporate has launched some vital safety updates for customers on macOS Mojave and macOS Catalina.

Apple has launched the total record of safety updates that have been launched as we speak to each macOS Mojave and macOS Catalina. The updates embrace fixes to audio, Bluetooth, and WebKit.

You possibly can try the total record of safety fixes beneath:

AMD Kernel

Out there for: macOS Catalina

Impression: An utility could possibly execute arbitrary code with kernel privileges

Description: A reminiscence corruption situation was addressed with improved enter validation.

CVE-2021-30805: ABC Analysis s.r.o

AppKit

Out there for: macOS Catalina

Impression: Opening a maliciously crafted file could result in sudden utility termination or arbitrary code execution

VPN Deals: Lifetime license for $16, monthly plans at $1 & more

Description: An data disclosure situation was addressed by eradicating the weak code.

CVE-2021-30790: hjy79425575 working with Development Micro Zero Day Initiative

Audio

Out there for: macOS Catalina

Impression: An area attacker could possibly trigger sudden utility termination or arbitrary code execution

Description: This situation was addressed with improved checks.

CVE-2021-30781: tr3e

Bluetooth

Out there for: macOS Catalina

Impression: A malicious utility could possibly achieve root privileges

Description: A reminiscence corruption situation was addressed with improved state administration.

CVE-2021-30672: say2 of ENKI

CoreAudio

Out there for: macOS Catalina

Impression: Processing a maliciously crafted audio file could result in arbitrary code execution

Description: A reminiscence corruption situation was addressed with improved state administration.

CVE-2021-30775: JunDong Xie of Ant Safety Gentle-Yr Lab

CoreAudio

Out there for: macOS Catalina

Impression: Enjoying a malicious audio file could result in an sudden utility termination

Description: A logic situation was addressed with improved validation.

CVE-2021-30776: JunDong Xie of Ant Safety Gentle-Yr Lab

CoreStorage

Out there for: macOS Catalina

Impression: A malicious utility could possibly achieve root privileges

Description: An injection situation was addressed with improved validation.

CVE-2021-30777: Tim Michaud(@TimGMichaud) of Zoom Video Communications and Gary Nield of ECSC Group plc

CoreText

Out there for: macOS Catalina

Impression: Processing a maliciously crafted font file could result in arbitrary code execution

Description: An out-of-bounds learn was addressed with improved enter validation.

CVE-2021-30789: Sunglin of Knownsec 404 crew, Mickey Jin (@patch1t) of Development Micro

CoreText

Out there for: macOS Catalina

Impression: Processing a maliciously crafted font could consequence within the disclosure of course of reminiscence

Description: An out-of-bounds learn was addressed with improved enter validation.

CVE-2021-30733: Sunglin from the Knownsec 404

CVMS

Out there for: macOS Catalina

Impression: A malicious utility could possibly achieve root privileges

Description: An out-of-bounds write situation was addressed with improved bounds checking.

CVE-2021-30780: Tim Michaud(@TimGMichaud) of Zoom Video Communications

dyld

Out there for: macOS Catalina

Impression: A sandboxed course of could possibly circumvent sandbox restrictions

Description: A logic situation was addressed with improved validation.

CVE-2021-30768: Linus Henze (pinauten.de)

FontParser

Out there for: macOS Catalina

Impression: Processing a maliciously crafted font file could result in arbitrary code execution

Description: An integer overflow was addressed by way of improved enter validation.

CVE-2021-30760: Sunglin of Knownsec 404 crew

FontParser

Out there for: macOS Catalina

Impression: Processing a maliciously crafted font file could result in arbitrary code execution

Description: A stack overflow was addressed with improved enter validation.

CVE-2021-30759: hjy79425575 working with Development Micro Zero Day Initiative

FontParser

Out there for: macOS Catalina

Impression: Processing a maliciously crafted tiff file could result in a denial-of-service or doubtlessly disclose reminiscence contents

Description: This situation was addressed with improved checks.

CVE-2021-30788: tr3e working with Development Micro Zero Day Initiative

ImageIO

Out there for: macOS Catalina

Impression: Processing a maliciously crafted picture could result in arbitrary code execution

Description: A buffer overflow was addressed with improved bounds checking.

CVE-2021-30785: Mickey Jin (@patch1t) of Development Micro, CFF of Topsec Alpha Group

Intel Graphics Driver

Out there for: macOS Catalina

Impression: An utility could possibly trigger sudden system termination or write kernel reminiscence

Description: This situation was addressed with improved checks.

CVE-2021-30787: Nameless working with Development Micro Zero Day Initiative

Intel Graphics Driver

Out there for: macOS Catalina

Impression: An utility could possibly execute arbitrary code with kernel privileges

Description: An out-of-bounds write was addressed with improved enter validation.

CVE-2021-30765: Liu Lengthy of Ant Safety Gentle-Yr Lab

CVE-2021-30766: Liu Lengthy of Ant Safety Gentle-Yr Lab

IOUSBHostFamily

Out there for: macOS Catalina

Impression: An unprivileged utility could possibly seize USB gadgets

Description: This situation was addressed with improved checks.

CVE-2021-30731: UTM (@UTMapp)

Kernel

Out there for: macOS Catalina

Impression: An utility could possibly execute arbitrary code with kernel privileges

Description: A double free situation was addressed with improved reminiscence administration.

CVE-2021-30703: an nameless researcher

Kernel

Out there for: macOS Catalina

Impression: An utility could possibly execute arbitrary code with kernel privileges

Description: A logic situation was addressed with improved state administration.

CVE-2021-30793: Zuozhi Fan (@pattern_F_) of Ant Safety TianQiong Lab

LaunchServices

Out there for: macOS Catalina

Impression: A malicious utility could possibly get away of its sandbox

Description: This situation was addressed with improved atmosphere sanitization.

CVE-2021-30677: Ron Waisberg (@epsilan)

LaunchServices

Out there for: macOS Catalina

Impression: A sandboxed course of could possibly circumvent sandbox restrictions

Description: An entry situation was addressed with improved entry restrictions.

CVE-2021-30783: Ron Waisberg (@epsilan)

Mannequin I/O

Out there for: macOS Catalina

Impression: Processing a maliciously crafted picture could result in a denial of service

Description: A logic situation was addressed with improved validation.

CVE-2021-30796: Mickey Jin (@patch1t) of Development Micro

Sandbox

Out there for: macOS Catalina

Impression: A malicious utility could possibly entry restricted information

Description: This situation was addressed with improved checks.

CVE-2021-30782: Csaba Fitzl (@theevilbit) of Offensive Safety

WebKit

Out there for: macOS Catalina

Impression: Processing maliciously crafted internet content material could result in arbitrary code execution

Description: A number of reminiscence corruption points have been addressed with improved reminiscence dealing with.

CVE-2021-30799: Sergei Glazunov of Google Venture Zero