Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

APPLE-SA-2021-05-03-4 macOS Big Sur 11.3.1

Related Vulnerabilities: CVE-2021-30665   CVE-2021-30663  
Source 
                							

                <!--X-Body-Begin-->
<!--X-User-Header-->
<a href="/fulldisclosure/"><img src="/images/fulldisclosure-logo.png" class="l-logo right" alt="fulldisclosure logo" width="80"></a>
<h2 class="m-list"><a href="/fulldisclosure/">Full Disclosure</a>
mailing list archives</h2>
<!--X-User-Header-End-->
<!--X-TopPNI-->
<div class="nav-bar">
<div class="nav-link">
<a href="4"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="date.html#9">By Date</a>
<a href="7"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
<div class="nav-link">
<a href="4"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="index.html#9">By Thread</a>
<a href="7"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
<form class="nst-search center" action="/search/fulldisclosure">
<input class="nst-search-q" name="q" type="search" placeholder="List Archive Search">
<button class="nst-search-button" title="Search">
<img style="width:100%;aspect-ratio:1/1;" alt="" aria-hidden="true" src="/shared/images/nst-icons.svg#search">
</button>
</form>

</div>

<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
<h1 class="m-title">APPLE-SA-2021-05-03-4 macOS Big Sur 11.3.1</h1>
<hr>
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->


<em>From</em>: Apple Product Security via Fulldisclosure &lt;fulldisclosure () seclists org&gt;


<em>Date</em>: Mon, 03 May 2021 14:57:31 -0700


<!--X-Head-of-Message-End-->
<!--X-Head-Body-Sep-Begin-->
<hr>
<!--X-Head-Body-Sep-End-->
<!--X-Body-of-Message-->
<pre style="margin: 0em;">-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2021-05-03-4 macOS Big Sur 11.3.1

macOS Big Sur 11.3.1 addresses the following issues.
Information about the security content is also available at
<a rel="nofollow" href="https://support.apple.com/HT212335">https://support.apple.com/HT212335</a>.

WebKit
Available for: macOS Big Sur
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Apple is aware of a report that this issue
may have been actively exploited.
Description: A memory corruption issue was addressed with improved
state management.
CVE-2021-30665: yangkang (@dnpushme)&amp;zerokeeper&amp;bianliang of 360 ATA

WebKit
Available for: macOS Big Sur
Impact: Processing maliciously crafted web content may lead to
arbitrary code execution. Apple is aware of a report that this issue
may have been actively exploited.
Description: An integer overflow was addressed with improved input
validation.
CVE-2021-30663: an anonymous researcher

Installation note:

This update may be obtained from the Mac App Store or
Apple's Software Downloads web site:
<a rel="nofollow" href="https://support.apple.com/downloads/">https://support.apple.com/downloads/</a>

Information will also be posted to the Apple Security Updates
web site: <a rel="nofollow" href="https://support.apple.com/kb/HT201222">https://support.apple.com/kb/HT201222</a>

This message is signed with Apple's Product Security PGP key,
and details are available at:
<a rel="nofollow" href="https://www.apple.com/support/security/pgp/">https://www.apple.com/support/security/pgp/</a>
-----BEGIN PGP SIGNATURE-----
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=iupq
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the Full Disclosure mailing list
<a rel="nofollow" href="https://nmap.org/mailman/listinfo/fulldisclosure">https://nmap.org/mailman/listinfo/fulldisclosure</a>
Web Archives &amp; RSS: <a rel="nofollow" href="http://seclists.org/fulldisclosure/">http://seclists.org/fulldisclosure/</a>

</pre>
<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<hr>
<!--X-Follow-Ups-End-->
<!--X-References-->
<!--X-References-End-->
<!--X-BotPNI-->
<div class="nav-bar">
<div class="nav-link">
<a href="4"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="date.html#9">By Date</a>
<a href="7"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
<div class="nav-link">
<a href="4"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="index.html#9">By Thread</a>
<a href="7"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
</div>
<h3 class="m-thread">Current thread:</h3>
<ul class="thread">
<li><strong>APPLE-SA-2021-05-03-4 macOS Big Sur 11.3.1</strong> <em>Apple Product Security via Fulldisclosure (May 04)</em>
</li></ul>


<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->
<p>

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started