CVE-2021-30841

This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted dfont file may lead to arbitrary code execution.

Affected Software

Name	Vendor	Start Version	End Version
Ipados	Apple	*	14.8 (excluding)
Iphone_os	Apple	*	14.8 (excluding)
Mac_os_x	Apple	10.15 (including)	10.15.6 (including)
Mac_os_x	Apple	10.15.7 (including)	10.15.7 (including)
Mac_os_x	Apple	10.15.7-security_update_2020 (including)	10.15.7-security_update_2020 (including)
Mac_os_x	Apple	10.15.7-security_update_2020-001 (including)	10.15.7-security_update_2020-001 (including)
Mac_os_x	Apple	10.15.7-security_update_2020-005 (including)	10.15.7-security_update_2020-005 (including)
Mac_os_x	Apple	10.15.7-security_update_2020-007 (including)	10.15.7-security_update_2020-007 (including)
Mac_os_x	Apple	10.15.7-security_update_2021-001 (including)	10.15.7-security_update_2021-001 (including)
Mac_os_x	Apple	10.15.7-security_update_2021-002 (including)	10.15.7-security_update_2021-002 (including)
Mac_os_x	Apple	10.15.7-security_update_2021-003 (including)	10.15.7-security_update_2021-003 (including)
Mac_os_x	Apple	10.15.7-security_update_2021-004 (including)	10.15.7-security_update_2021-004 (including)
Mac_os_x	Apple	10.15.7-supplemental_update (including)	10.15.7-supplemental_update (including)
Macos	Apple	11.0 (including)	11.6 (excluding)
Tvos	Apple	*	15.0 (excluding)
Watchos	Apple	*	8.0 (excluding)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-30841
CWE	https://cwe.mitre.org/data/definitions/.html

Affected Software

References