| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 03 May 2021 14:57:31 -0700 From: Apple Product Security via Fulldisclosure <fulldisclosure@...lists.org> To: security-announce@...ts.apple.com Subject: [FD] APPLE-SA-2021-05-03-4 macOS Big Sur 11.3.1 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-05-03-4 macOS Big Sur 11.3.1 macOS Big Sur 11.3.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/HT212335. WebKit Available for: macOS Big Sur Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: A memory corruption issue was addressed with improved state management. CVE-2021-30665: yangkang (@dnpushme)&zerokeeper&bianliang of 360 ATA WebKit Available for: macOS Big Sur Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: An integer overflow was addressed with improved input validation. CVE-2021-30663: an anonymous researcher Installation note: This update may be obtained from the Mac App Store or Apple's Software Downloads web site: https://support.apple.com/downloads/ Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEbURczHs1TP07VIfuZcsbuWJ6jjAFAmCQZx8ACgkQZcsbuWJ6 jjDV6Q/+MkIoZTTFMF2g2IMxg4XnDUXYzoYaM7uJaqNy2it4QyWlAMGE9hj5cptB Wc03MrVAkycYfW6hcgCKvVWisXKrr2//ymlEBfngEbpRaCP2g/rhaUFSh51G22Sf wh19a2PVkQYkYVdQCkZEQYFVrYe+4+bnWD44srZg65yyCZ/pK6NlN1BF7WTsb8cT F74rbHdPNrEOCjRfuNTqgAe91QARn1b7TdAPbuAPjj4eckV1k5Onaah/EdD3+erE Daljw3vgwstYizc8b/yo/sS/U1inxrkcGps/zVGuiwzSLoxfLWMRQ8qzBjSax1+F HCN2UXVlQ6Sghqjp3edhTePBJmzFZtbJB+I7HZ/zE5UMcGKUDnh6UFIEfpmCSBR/ 47UxYOVnmfNJ0M+Ne1/H/ivJEMvH1m7n9RsgDYiyKA6VbNos1V8bhFXbZHfbILqJ kDyoZ7lAec/0R34cLM3kFqvoxi7Gki2FQqPNbT9oLPofeiSCi/UpW367Xl2XnYWx ezjowLDX1RkhEF/QiK1u7KqWrqDKDuPPMfXmv+vURWy24CX4+Q1HOQR3ywRzYbEO eLrBldYXRe+EPqzWhSsYQt8stUEOZCtQjxm6jGK8EzR17WXDAyHEY+56j+0GRQ4Y MYR4zRT1uAE0K8PWpFRDP88rgT0uPHRMuL1Gonwvimv3rSkoOvo= =iupq -----END PGP SIGNATURE----- _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists