CVE-2021-30962: Medium severity apple macos vulnerability

Q: What is the vulnerability ID for this issue?

The vulnerability ID for this issue is CVE-2021-30962.

Q: What is the affected software?

The affected software includes Apple macOS Big Sur versions up to and excluding 11.6.2 and Apple tvOS versions up to and excluding 15.2.

Q: What is the severity of CVE-2021-30962?

The severity of CVE-2021-30962 is not specified in the provided information.

Q: How can I fix CVE-2021-30962?

To fix CVE-2021-30962, update Apple macOS Big Sur to version 11.6.2 or later, and update Apple tvOS to version 15.2 or later.

Q: Where can I find more information about CVE-2021-30962?

You can find more information about CVE-2021-30962 on the Apple support website.

Published Aug 24, 2021

Updated

A memory initialization issue was addressed with improved memory handling. This issue is fixed in tvOS 15.2, macOS Big Sur 11.6.2. Parsing a maliciously crafted audio file may lead to disclosure of user information.

Other sources

CoreAudio. A memory initialization issue was addressed with improved memory handling.

Credit

JunDong Xie(Ant Security Light)

Affected Software

4 affected componentsFixes available

Apple macOS Big Sur<11.6.2

11.6.2

tvOS<15.2

15.2

macOS>=11.6<11.6.2

tvOS<15.2

Event History

Aug 24, 2021

CVE Published

via MITRE·06:51 PM

Data Sourced

via MITRE·06:51 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is the vulnerability ID for this issue?

The vulnerability ID for this issue is CVE-2021-30962.

What is the affected software?