First published: Mon May 18 2020(Updated: )
An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A local user may be able to read kernel memory.
Credit: Tielei Wang Pangu Labderrek @derrekr6 Tielei Wang Pangu Labderrek @derrekr6 Tielei Wang Pangu Labderrek @derrekr6 Tielei Wang Pangu Labderrek @derrekr6 product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iOS | <13.5 | 13.5 |
Apple iPadOS | <13.5 | 13.5 |
Apple iPadOS | <13.5 | |
Apple iPhone OS | <13.5 | |
Apple Mac OS X | <10.15.5 | |
Apple tvOS | <13.4.5 | |
Apple watchOS | <6.2.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2020-9811 is an information disclosure vulnerability in the Kernel that was addressed with improved state management.
CVE-2020-9811 affects Apple watchOS 6.2.5, Apple macOS Catalina 10.15.5, Apple iOS up to 13.5, Apple iPadOS up to 13.5, and Apple tvOS up to 13.4.5.
To fix CVE-2020-9811, update your software to the following versions: Apple watchOS 6.2.5, Apple macOS Catalina 10.15.5, Apple iOS 13.5, Apple iPadOS 13.5, and Apple tvOS 13.4.5.
You can find more information about CVE-2020-9811 on the Apple support website: [https://support.apple.com/en-us/HT211175](https://support.apple.com/en-us/HT211175), [https://support.apple.com/en-us/HT211170](https://support.apple.com/en-us/HT211170), [https://support.apple.com/en-us/HT211168](https://support.apple.com/en-us/HT211168).