Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2020-9952

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0, watchOS 7.0, Safari 14.0, iCloud for Windows 11.4, iCloud for Windows 7.21. Processing maliciously crafted web content may lead to a cross site scripting attack.

Related bugs and status

CVE-2020-9952 (Candidate) is related to these bugs:

Bug #1970779: Upgrade to 2.36.7 for Focal and Jammy

		In	Importance	Status
1970779	Upgrade to 2.36.7 for Focal and Jammy	wpewebkit (Ubuntu)	Medium	Incomplete
1970779	Upgrade to 2.36.7 for Focal and Jammy	wpewebkit (Ubuntu Jammy)	Undecided	Confirmed
1970779	Upgrade to 2.36.7 for Focal and Jammy	wpewebkit (Ubuntu Focal)	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

MISC: https://support.apple....
MISC: https://support.apple....
MISC: https://support.apple....
MISC: https://support.apple....
MISC: https://support.apple....
MISC: https://support.apple....
FULLDISC: 20201115 APPLE-SA-2020...
FULLDISC: 20201115 APPLE-SA-2020...
FULLDISC: 20201115 APPLE-SA-2020...
FULLDISC: 20201115 APPLE-SA-2020...
MLIST: [oss-security] 2020112...
GENTOO: GLSA-202012-10