The vulnerability of the FontParser component in operating systems such as iPadOS, watchOS, iOS, tvOS, and Mac OS allows attackers to disclose protected information.

The vulnerability of the FontParser component in iPadOS, watchOS, iOS, tvOS, and Mac OS operating systems is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information...

About the security content of tvOS 15.2

About the security content of tvOS 15.2 This document describes the security content of tvOS 15.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

About the security content of watchOS 8.3

About the security content of watchOS 8.3 This document describes the security content of watchOS 8.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

Apple Multiple Products Memory Corruption Vulnerability

Apple iOS, iPadOS, macOS, and watchOS FontParser contain a memory corruption vulnerability which may allow for code execution when processing maliciously crafted front...

About the security content of watchOS 8

About the security content of watchOS 8 This document describes the security content of watchOS 8. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

About the security content of tvOS 15

About the security content of tvOS 15 This document describes the security content of tvOS 15. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent...

Apple TV app 缓冲区错误漏洞

The Apple TV app is a television application from Apple USA. A buffer error vulnerability exists in Apple TV 4K and Apple TV HD, which stems from a boundary error when processing font files in FontParser. An attacker could use this vulnerability to trick a victim into opening a specially crafted...

Apple tvOS 缓冲区错误漏洞

Apple tvOS is a set of smart TV operating systems from Apple USA. A buffer error vulnerability exists in Apple TV 4K and Apple TV HD, which stems from a boundary error when processing font files in FontParser. The vulnerability can be exploited to trick a victim into opening a specially crafted...

About the security content of Security Update 2021-003 Catalina

About the security content of Security Update 2021-003 Catalina This document describes the security content of Security Update 2021-003 Catalina. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has...

About the security content of watchOS 7.5

About the security content of watchOS 7.5 This document describes the security content of watchOS 7.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

Apple macOS 竞争条件问题漏洞

Apple macOS is a proprietary operating system developed by Apple Inc. for Mac computers. A vulnerability exists in macOS due to a competitive condition that originates in the FontParser component when processing font files. 10.14.4 18E226, 10.14.4 18E227, 10.14.5 18F132, 10.14.6 18G84, 10.14.6...

About the security content of watchOS 7.4

About the security content of watchOS 7.4 This document describes the security content of watchOS 7.4. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

About the security content of Security Update 2021-002 Catalina

About the security content of Security Update 2021-002 Catalina This document describes the security content of Security Update 2021-002 Catalina. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has...

Apple TV < 14.3 Multiple Vulnerabilities

According to its banner, the version of Apple TV on the remote device is prior to 14.3. It is, therefore, affected by multiple vulnerabilities as described in the HT212005 advisory: - An out-of-bounds write issue within CoreAudio processing may allow a maliciously crafted audio file to cause...

Apple macOS Security Breach

Apple macOS is a proprietary operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS that stems from insufficient validation of user-supplied input when processing font files in the FontParser component of macOS. A remote attacker could trick a...

Apple macOS Security Breach

Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS that stems from a boundary condition when processing font files within the FontParser component in macOS. A remote attacker can create specially crafted files or...

Apple FontParser Buffer Error Vulnerability

Apple FontParser is a font parsing program from Apple Inc. A security vulnerability exists in Apple FontParser that could allow a remote attacker to access potentially sensitive information. The following products and versions are affected: macOS: 10.14, 10.14.1, 10.14.2, 10.14.3, 10.14.4, 10.14....

Apple macOS Buffer Error Vulnerability

Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS that stems from a boundary condition when processing font files within the FontParser component in macOS. A remote attacker can create specially crafted files or...

About the security content of watchOS 7.2 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

Apple macOS buffer overflow vulnerability (CNVD-2021-00023)

Apple macOS is a specialized operating system developed by Apple for Mac computers. A buffer overflow vulnerability exists in Apple macOS. The vulnerability originates from an unknown function in FontParser. An attacker can exploit the vulnerability to cause arbitrary code execution...