A logic issue was addressed with improved state management. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. An application may be able to gain elevated privileges.
The product compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Cups | Apple | * | 499.4 (excluding) |
| Mac_os_x | Apple | 10.15 (including) | 10.15.7 (excluding) |
| Mac_os_x | Apple | 10.15.7 (including) | 10.15.7 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2020 (including) | 10.15.7-security_update_2020 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2020-001 (including) | 10.15.7-security_update_2020-001 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2020-005 (including) | 10.15.7-security_update_2020-005 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2020-007 (including) | 10.15.7-security_update_2020-007 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2021-001 (including) | 10.15.7-security_update_2021-001 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2021-002 (including) | 10.15.7-security_update_2021-002 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2021-003 (including) | 10.15.7-security_update_2021-003 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2021-006 (including) | 10.15.7-security_update_2021-006 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2021-007 (including) | 10.15.7-security_update_2021-007 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2021-008 (including) | 10.15.7-security_update_2021-008 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2022-001 (including) | 10.15.7-security_update_2022-001 (including) |
| Mac_os_x | Apple | 10.15.7-security_update_2022-002 (including) | 10.15.7-security_update_2022-002 (including) |
| Mac_os_x | Apple | 10.15.7-supplemental_update (including) | 10.15.7-supplemental_update (including) |
| Macos | Apple | 11.0 (including) | 11.6.5 (excluding) |
| Macos | Apple | 12.0.0 (excluding) | 12.3 (excluding) |
| Red Hat Enterprise Linux 8 | RedHat | cups-1:2.2.6-45.el8_6.2 | * |
| Red Hat Enterprise Linux 8 | RedHat | cups-1:2.2.6-45.el8_6.2 | * |
| Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions | RedHat | cups-1:2.2.6-28.el8_1.1 | * |
| Red Hat Enterprise Linux 8.2 Extended Update Support | RedHat | cups-1:2.2.6-33.el8_2.1 | * |
| Red Hat Enterprise Linux 8.4 Extended Update Support | RedHat | cups-1:2.2.6-38.el8_4.1 | * |
| Red Hat Enterprise Linux 9 | RedHat | cups-1:2.3.3op2-13.el9_0.1 | * |
| Red Hat Enterprise Linux 9 | RedHat | cups-1:2.3.3op2-13.el9_0.1 | * |
| Cups | Ubuntu | bionic | * |
| Cups | Ubuntu | devel | * |
| Cups | Ubuntu | esm-infra/xenial | * |
| Cups | Ubuntu | focal | * |
| Cups | Ubuntu | impish | * |
| Cups | Ubuntu | jammy | * |
| Cups | Ubuntu | kinetic | * |
| Cups | Ubuntu | upstream | * |
This Pillar covers several possibilities: