| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 03 May 2021 14:57:24 -0700 From: Apple Product Security via Fulldisclosure <fulldisclosure@...lists.org> To: security-announce@...ts.apple.com Subject: [FD] APPLE-SA-2021-05-03-3 watchOS 7.4.1 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-05-03-3 watchOS 7.4.1 watchOS 7.4.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/HT212339. WebKit Available for: Apple Watch Series 3 and later Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: A memory corruption issue was addressed with improved state management. CVE-2021-30665: yangkang (@dnpushme)&zerokeeper&bianliang of 360 ATA Installation note: Instructions on how to update your Apple Watch software are available at https://support.apple.com/kb/HT204641 To check the version on your Apple Watch, open the Apple Watch app on your iPhone and select "My Watch > General > About". Alternatively, on your watch, select "My Watch > General > About". Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEbURczHs1TP07VIfuZcsbuWJ6jjAFAmCQZx8ACgkQZcsbuWJ6 jjCaaRAAl2MiVlj1pkMM8zOiItfsDuS4l1DDs9HXkyBxETyJ7gSOllZwaG81IKaG sR+6+GWZmr9Hilg0HBd9zxAo7jstATlbXqIsgyiwdtuNIp22mWKz20c4IGbxhheM 5bFntTqPzy9AgM08IkkLK54W68G6ZMKtLXAd0SeC5VT9p3iQgXRPhKZBqP1fCGnd OhRW3rzYkgNufpdyllMgbu32DzhZZWMSy3UK3yrW5G3/cC5NQ51r32MgG1/LIgGI 7omAIWz7nBl8/4EtJp027QcbiaYPEs69/0GnsRbtJ2uy7nRqnw8WIXs1ZlGXJ9Ug Ey18DMWvhe7yKuz+HiTxqlIBBwpR70TIPpHjkWASF0ycUzT0HAp10bkMFl1tQedH LqMDyN+6weiNBujsN9KsAv4NqdlE7zMp5vVeUaiGWrq68vy3u+z3FxJVWCiJarwx 99Kv/zaM2cRxiAK8+o+7nzIFOy+OTwBhqtceH5FX3ijNyE9ziEuyHZr8sTqzZbiP /pZ/WIWYo8VkwhhIVFd8Uh0y7au3KbxDFIOmlqxavPpTkhz9LLY7AeHkT3EFgaSw aSSq4vPIsKZ8ndScPS3bU/fHDoCBFdniDMEhmn2F2OHp6Xfwad/HZQyuMFyg86dB cnUZVLcXJSuTZDjUFpEirqK4KzuoXs600X7WsA9pZcuiQa5/kkQ= =YSrW -----END PGP SIGNATURE----- _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists