CVE-2020-7463: Use After Free
First published: Fri Mar 26 2021(Updated: )
In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.
Credit: Megan2013678 Megan2013678 Megan2013678 Megan2013678 Megan2013678 Megan2013678 Megan2013678 secteam@freebsd.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Safari | <14.1 | 14.1 |
| Apple iTunes for Windows | <12.11.3 | 12.11.3 |
| Apple iCloud for Windows | <12.3 | 12.3 |
| Apple macOS Big Sur | <11.3 | 11.3 |
| Apple tvOS | <14.5 | 14.5 |
| Apple watchOS | <7.4 | 7.4 |
| Apple iOS | <14.5 | 14.5 |
| Apple iPadOS | <14.5 | 14.5 |
| FreeBSD FreeBSD | =11.3 | |
| FreeBSD FreeBSD | =11.3-p1 | |
| FreeBSD FreeBSD | =11.3-p10 | |
| FreeBSD FreeBSD | =11.3-p11 | |
| FreeBSD FreeBSD | =11.3-p12 | |
| FreeBSD FreeBSD | =11.3-p2 | |
| FreeBSD FreeBSD | =11.3-p3 | |
| FreeBSD FreeBSD | =11.3-p4 | |
| FreeBSD FreeBSD | =11.3-p5 | |
| FreeBSD FreeBSD | =11.3-p6 | |
| FreeBSD FreeBSD | =11.3-p7 | |
| FreeBSD FreeBSD | =11.3-p8 | |
| FreeBSD FreeBSD | =11.3-p9 | |
| FreeBSD FreeBSD | =11.4 | |
| FreeBSD FreeBSD | =11.4-p1 | |
| FreeBSD FreeBSD | =11.4-p2 | |
| FreeBSD FreeBSD | =12.1 | |
| FreeBSD FreeBSD | =12.1-p1 | |
| FreeBSD FreeBSD | =12.1-p2 | |
| FreeBSD FreeBSD | =12.1-p3 | |
| FreeBSD FreeBSD | =12.1-p4 | |
| FreeBSD FreeBSD | =12.1-p5 | |
| FreeBSD FreeBSD | =12.1-p6 | |
| FreeBSD FreeBSD | =12.1-p7 | |
| FreeBSD FreeBSD | =12.1-p8 | |
| FreeBSD FreeBSD | =12.2 | |
| Apple Icloud Windows | <12.3 | |
| Apple Itunes Windows | <12.11.3 | |
| Apple Safari | <14.1 | |
| Apple iPadOS | <14.5 | |
| Apple iPhone OS | <14.5 | |
| Apple macOS | >=11.0<11.3 | |
| Apple tvOS | <14.5 | |
| Apple watchOS | <7.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT212317 (Advisory)
- https://support.apple.com/en-us/HT212318 (Advisory)
- https://support.apple.com/en-us/HT212319 (Advisory)
- https://support.apple.com/en-us/HT212321 (Advisory)
- https://support.apple.com/en-us/HT212323 (Advisory)
- https://support.apple.com/en-us/HT212324 (Advisory)
- https://support.apple.com/en-us/HT212325 (Advisory)
- http://seclists.org/fulldisclosure/2021/Apr/49
- http://seclists.org/fulldisclosure/2021/Apr/50
- http://seclists.org/fulldisclosure/2021/Apr/57
- http://seclists.org/fulldisclosure/2021/Apr/58
- http://seclists.org/fulldisclosure/2021/Apr/59
- https://security.FreeBSD.org/advisories/FreeBSD-SA-20:25.sctp.asc
- https://support.apple.com/kb/HT212317
- https://support.apple.com/kb/HT212318
- https://support.apple.com/kb/HT212319
- https://support.apple.com/kb/HT212321
- https://support.apple.com/kb/HT212323
- https://support.apple.com/kb/HT212324
- https://support.apple.com/kb/HT212325
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-1825
- CVE-2021-30661
- CVE-2020-7463
- CVE-2021-1857
- CVE-2021-1811
- CVE-2021-1853
- CVE-2021-1849
- CVE-2021-1867
- CVE-2021-1810
- CVE-2021-1808
- CVE-2021-30752
- CVE-2021-30664
- CVE-2021-1846
- CVE-2021-1809
- CVE-2021-30659
- CVE-2021-1847
- CVE-2020-8284
- CVE-2020-8286
- CVE-2020-8285
- CVE-2021-1784
- CVE-2021-1872
- CVE-2021-1881
- CVE-2021-1882
- CVE-2021-1813
- CVE-2021-1883
- CVE-2021-1884
- CVE-2021-1880
- CVE-2021-30653
- CVE-2021-1814
- CVE-2021-1843
- CVE-2021-1885
- CVE-2021-1858
- CVE-2021-30743
- CVE-2021-30658
- CVE-2021-1841
- CVE-2021-1834
- CVE-2021-1860
- CVE-2021-1840
- CVE-2021-1851
- CVE-2021-1832
- CVE-2021-30660
- CVE-2021-30652
- CVE-2021-1875
- CVE-2021-1824
- CVE-2021-1859
- CVE-2021-1876
- CVE-2021-1815
- CVE-2021-1739
- CVE-2021-1740
- CVE-2021-1861
- CVE-2021-1855
- CVE-2021-1868
- CVE-2021-30750
- CVE-2021-1878
- CVE-2021-30657
- CVE-2021-30856
- CVE-2020-8037
- CVE-2021-1839
- CVE-2021-1817
- CVE-2021-1826
- CVE-2021-1820
- CVE-2021-1828
- CVE-2021-1829
- CVE-2021-30655
- CVE-2021-1770
- CVE-2021-1873
- CVE-2021-1836
- CVE-2021-30764
- CVE-2021-1864
- CVE-2021-1816
- CVE-2021-1822
- CVE-2021-1844
- CVE-2021-1807
- CVE-2021-1835
- CVE-2021-1837
- CVE-2021-30742
- CVE-2021-1812
- CVE-2021-30656
- CVE-2021-30662
- CVE-2021-1877
- CVE-2021-1852
- CVE-2021-1830
- CVE-2021-1874
- CVE-2021-1833
- CVE-2021-1865
- CVE-2021-1863
- CVE-2021-1831
- CVE-2021-1862
- CVE-2021-1854
- CVE-2021-30921
- CVE-2021-1848
Frequently Asked Questions
What is CVE-2020-7463?
CVE-2020-7463 is a use after free vulnerability in WebRTC that has been addressed with improved memory management.
What is the impact of CVE-2020-7463?
CVE-2020-7463 may allow a remote attacker to cause unexpected system termination or corrupt kernel memory.
Which software products are affected by CVE-2020-7463?
The following Apple software products are affected by CVE-2020-7463: Safari 14.1, iOS 14.5, iPadOS 14.5, watchOS 7.4, iTunes for Windows 12.11.3, iCloud for Windows 12.3, macOS Big Sur 11.3, and tvOS 14.5.
How can I fix CVE-2020-7463?
To fix CVE-2020-7463, it is recommended to update your affected Apple software products to the latest versions.
Where can I find more information about CVE-2020-7463?
More information about CVE-2020-7463 can be found in the references provided by Apple: [Reference 1](https://support.apple.com/en-us/HT212321), [Reference 2](https://support.apple.com/en-us/HT212317), [Reference 3](https://support.apple.com/en-us/HT212318).
- collector/apple-support
- agent/last-modified-date
- agent/first-publish-date
- agent/type
- agent/software-canonical-lookup-request
- source/Apple
- agent/software-canonical-lookup
- agent/event
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- collector/nvd-index
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/apple
- canonical/apple safari
- canonical/apple itunes for windows
- canonical/apple icloud for windows
- canonical/apple macos big sur
- canonical/apple tvos
- canonical/apple watchos
- canonical/apple ios
- canonical/apple ipados
- vendor/freebsd
- canonical/freebsd freebsd
- version/freebsd freebsd/11.3
- version/freebsd freebsd/11.3-p1
- version/freebsd freebsd/11.3-p10
- version/freebsd freebsd/11.3-p11
- version/freebsd freebsd/11.3-p12
- version/freebsd freebsd/11.3-p2
- version/freebsd freebsd/11.3-p3
- version/freebsd freebsd/11.3-p4
- version/freebsd freebsd/11.3-p5
- version/freebsd freebsd/11.3-p6
- version/freebsd freebsd/11.3-p7
- version/freebsd freebsd/11.3-p8
- version/freebsd freebsd/11.3-p9
- version/freebsd freebsd/11.4
- version/freebsd freebsd/11.4-p1
- version/freebsd freebsd/11.4-p2
- version/freebsd freebsd/12.1
- version/freebsd freebsd/12.1-p1
- version/freebsd freebsd/12.1-p2
- version/freebsd freebsd/12.1-p3
- version/freebsd freebsd/12.1-p4
- version/freebsd freebsd/12.1-p5
- version/freebsd freebsd/12.1-p6
- version/freebsd freebsd/12.1-p7
- version/freebsd freebsd/12.1-p8
- version/freebsd freebsd/12.2
- canonical/apple icloud windows
- canonical/apple itunes windows
- canonical/apple iphone os
- canonical/apple macos
- version/apple macos/11.0