Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2021-30858

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

Related bugs and status

CVE-2021-30858 (Candidate) is related to these bugs:

Bug #1970779: Upgrade to 2.36.7 for Focal and Jammy

		In	Importance	Status
1970779	Upgrade to 2.36.7 for Focal and Jammy	wpewebkit (Ubuntu)	Medium	Incomplete
1970779	Upgrade to 2.36.7 for Focal and Jammy	wpewebkit (Ubuntu Jammy)	Undecided	Confirmed
1970779	Upgrade to 2.36.7 for Focal and Jammy	wpewebkit (Ubuntu Focal)	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

MISC: https://support.apple....
MISC: https://support.apple....
FULLDISC: 20210917 APPLE-SA-2021...
FULLDISC: 20210917 APPLE-SA-2021...
FULLDISC: 20210917 APPLE-SA-2021...
MLIST: [oss-security] 2021092...
FEDORA: FEDORA-2021-c00e45b6c0
FULLDISC: 20210921 APPLE-SA-2021...
FULLDISC: 20210921 APPLE-SA-2021...
DEBIAN: DSA-4975
DEBIAN: DSA-4976
CONFIRM: https://support.apple....
FULLDISC: 20210924 APPLE-SA-2021...
FEDORA: FEDORA-2021-edf6957b7d
MLIST: [oss-security] 2021102...
MLIST: [oss-security] 2021102...
MLIST: [oss-security] 2021102...
MLIST: [oss-security] 2021102...