First published: Mon Sep 25 2017(Updated: )
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
Credit: product-security@apple.com found by OSS-Fuzz found by OSS-Fuzz found by OSS-Fuzz found by OSS-Fuzz found by OSS-Fuzz found by OSS-Fuzz
Affected Software | Affected Version | How to fix |
---|---|---|
Apple Mac OS X | <=10.12.6 | |
Apple macOS High Sierra | <10.13 | 10.13 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The severity of CVE-2017-7121 is critical with a score of 9.8.
CVE-2017-7121 affects macOS before 10.13 and macOS High Sierra (version up to 10.13).
CVE-2017-7121 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
To fix CVE-2017-7121, update to version 5.30 of the 'file' product.
You can find more information about CVE-2017-7121 at the following links: [SecurityFocus](http://www.securityfocus.com/bid/100993), [Apple Support](https://support.apple.com/HT208144), [Apple Support (en-US)](https://support.apple.com/en-us/HT208144).