exploit the possibilities

Apple Security Advisory 2021-01-26-1

Apple Security Advisory 2021-01-26-1
Posted Jan 27, 2021
Authored by Apple | Site apple.com

Apple Security Advisory 2021-01-26-1 - iOS 14.4 and iPadOS 14.4 address race condition and arbitrary code execution vulnerabilities.

tags | advisory, arbitrary, vulnerability, code execution
systems | apple, ios
advisories | CVE-2021-1782, CVE-2021-1870, CVE-2021-1871
MD5 | 9ea3bdc34259ca4f0ff33cda355065eb

Apple Security Advisory 2021-01-26-1

Change Mirror Download
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2021-01-26-1 iOS 14.4 and iPadOS 14.4

iOS 14.4 and iPadOS 14.4 addresses the following issues. Information
about the security content is also available at
https://support.apple.com/HT212146.

Kernel
Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4
and later, and iPod touch (7th generation)
Impact: A malicious application may be able to elevate privileges.
Apple is aware of a report that this issue may have been actively
exploited.
Description: A race condition was addressed with improved locking.
CVE-2021-1782: an anonymous researcher

WebKit
Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4
and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause arbitrary code
execution. Apple is aware of a report that this issue may have been
actively exploited.
Description: A logic issue was addressed with improved restrictions.
CVE-2021-1871: an anonymous researcher
CVE-2021-1870: an anonymous researcher

Additional details available soon.

Installation note:

This update is available through iTunes and Software Update on your
iOS device, and will not appear in your computer's Software Update
application, or in the Apple Downloads site. Make sure you have an
Internet connection and have installed the latest version of iTunes
from https://www.apple.com/itunes/

iTunes and Software Update on the device will automatically check
Apple's update server on its weekly schedule. When an update is
detected, it is downloaded and the option to be installed is
presented to the user when the iOS device is docked. We recommend
applying the update immediately if possible. Selecting Don't Install
will present the option the next time you connect your iOS device.

The automatic update process may take up to a week depending on the
day that iTunes or the device checks for updates. You may manually
obtain the update via the Check for Updates button within iTunes, or
the Software Update on your device.

To check that the iPhone, iPod touch, or iPad has been updated:

* Navigate to Settings
* Select General
* Select About. The version after applying this update
will be "iOS 14.4 and iPadOS 14.4".

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE-----
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fl62
-----END PGP SIGNATURE-----


Login or Register to add favorites

File Archive:

March 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    19 Files
  • 2
    Mar 2nd
    15 Files
  • 3
    Mar 3rd
    30 Files
  • 4
    Mar 4th
    13 Files
  • 5
    Mar 5th
    10 Files
  • 6
    Mar 6th
    1 Files
  • 7
    Mar 7th
    2 Files
  • 8
    Mar 8th
    19 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    0 Files
  • 12
    Mar 12th
    0 Files
  • 13
    Mar 13th
    0 Files
  • 14
    Mar 14th
    0 Files
  • 15
    Mar 15th
    0 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    0 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close