CVE-2021-30759: Input Validation
First published: Mon Jul 19 2021(Updated: )
FontParser. A stack overflow was addressed with improved input validation.
Credit: hjy79425575 Trend Micro Zero Day Initiativehjy79425575 Trend Micro Zero Day Initiativehjy79425575 Trend Micro Zero Day Initiativehjy79425575 Trend Micro Zero Day Initiativehjy79425575 Trend Micro Zero Day Initiative product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple macOS | <11.5 | 11.5 |
| tvOS | <14.7 | 14.7 |
| macOS Catalina | ||
| macOS Mojave | ||
| Apple iOS, iPadOS, and watchOS | <7.6 | 7.6 |
| Apple iOS, iPadOS, and macOS | <14.7 | |
| iPhone OS | <14.7 | |
| Apple iOS and macOS | =10.14 | |
| Apple iOS and macOS | =10.14.0 | |
| Apple iOS and macOS | =10.14.1 | |
| Apple iOS and macOS | =10.14.2 | |
| Apple iOS and macOS | =10.14.3 | |
| Apple iOS and macOS | =10.14.4 | |
| Apple iOS and macOS | =10.14.5 | |
| Apple iOS and macOS | =10.14.6 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-001 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-002 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-004 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-005 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-006 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-007 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-001 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-002 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-003 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-004 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-005 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-006 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-007 | |
| Apple iOS and macOS | =10.14.6-security_update_2021-001 | |
| Apple iOS and macOS | =10.14.6-security_update_2021-002 | |
| Apple iOS and macOS | =10.14.6-security_update_2021-003 | |
| Apple iOS and macOS | =10.14.6-security_update_2021-004 | |
| Apple iOS and macOS | =10.14.6-supplemental_update | |
| Apple iOS and macOS | =10.14.6-supplemental_update_2 | |
| Apple iOS and macOS | =10.15 | |
| Apple iOS and macOS | =10.15.1 | |
| Apple iOS and macOS | =10.15.2 | |
| Apple iOS and macOS | =10.15.3 | |
| Apple iOS and macOS | =10.15.4 | |
| Apple iOS and macOS | =10.15.5 | |
| Apple iOS and macOS | =10.15.6 | |
| Apple iOS and macOS | =10.15.6-supplemental_update | |
| Apple iOS and macOS | =10.15.7 | |
| Apple iOS and macOS | =10.15.7-security_update_2020 | |
| Apple iOS and macOS | =10.15.7-security_update_2020-001 | |
| Apple iOS and macOS | =10.15.7-security_update_2020-005 | |
| Apple iOS and macOS | =10.15.7-security_update_2020-007 | |
| Apple iOS and macOS | =10.15.7-security_update_2021-001 | |
| Apple iOS and macOS | =10.15.7-security_update_2021-002 | |
| Apple iOS and macOS | =10.15.7-security_update_2021-003 | |
| Apple iOS and macOS | =10.15.7-supplemental_update | |
| macOS | >=11.0<11.5 | |
| tvOS | <14.7 | |
| Apple iOS, iPadOS, and watchOS | <7.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-30805
- CVE-2021-30871
- CVE-2021-30790
- CVE-2021-31006
- CVE-2021-30781
- CVE-2021-30748
- CVE-2021-30775
- CVE-2021-30776
- CVE-2021-30786
- CVE-2021-30772
- CVE-2021-30783
- CVE-2021-30777
- CVE-2021-30789
- CVE-2021-30774
- CVE-2021-30780
- CVE-2021-30768
- CVE-2021-30817
- CVE-2021-30804
- CVE-2021-30760
- CVE-2021-30788
- CVE-2021-30759
- CVE-2021-30803
- CVE-2021-30779
- CVE-2021-30785
- CVE-2021-30787
- CVE-2021-30766
- CVE-2021-30765
- CVE-2021-30784
- CVE-2021-30793
- CVE-2021-30778
- CVE-2021-30677
- CVE-2021-3518
- CVE-2021-30796
- CVE-2021-30792
- CVE-2021-30791
- CVE-2021-1821
- CVE-2021-30782
- CVE-2021-31004
- CVE-2021-30798
- CVE-2021-30758
- CVE-2021-30795
- CVE-2021-30797
- CVE-2021-30799
- CVE-2021-30773
- CVE-2021-30802
- CVE-2021-30769
- CVE-2021-30770
- CVE-2021-30811
- CVE-2021-30672
- CVE-2021-30733
- CVE-2021-30731
- CVE-2021-30703
- CVE-2021-30763
Frequently Asked Questions
What is CVE-2021-30759?
CVE-2021-30759 is a vulnerability in the FontParser component that allowed for a stack overflow, which has been addressed with improved input validation.
Which software versions are affected by CVE-2021-30759?
CVE-2021-30759 affects Apple Mojave, Apple WatchOS up to version 7.6, Apple tvOS up to version 14.7, Apple Catalina, and Apple macOS Big Sur up to version 11.5.
How severe is the CVE-2021-30759 vulnerability?
The severity of CVE-2021-30759 is not provided in the given information.
How can I fix the CVE-2021-30759 vulnerability?
To fix the CVE-2021-30759 vulnerability, make sure to update your software to the latest version provided by Apple.
Where can I find more information about CVE-2021-30759?
More information about CVE-2021-30759 can be found on the official Apple support website at the provided references.
- agent/type
- agent/first-publish-date
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- collector/apple-support
- agent/software-canonical-lookup-request
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/apple
- canonical/apple macos
- canonical/tvos
- canonical/macos catalina
- canonical/macos mojave
- canonical/apple ios, ipados, and watchos
- canonical/apple ios, ipados, and macos
- canonical/iphone os
- canonical/apple ios and macos
- version/apple ios and macos/10.14
- version/apple ios and macos/10.14.0
- version/apple ios and macos/10.14.1
- version/apple ios and macos/10.14.2
- version/apple ios and macos/10.14.3
- version/apple ios and macos/10.14.4
- version/apple ios and macos/10.14.5
- version/apple ios and macos/10.14.6
- version/apple ios and macos/10.14.6-security_update_2019-001
- version/apple ios and macos/10.14.6-security_update_2019-002
- version/apple ios and macos/10.14.6-security_update_2019-004
- version/apple ios and macos/10.14.6-security_update_2019-005
- version/apple ios and macos/10.14.6-security_update_2019-006
- version/apple ios and macos/10.14.6-security_update_2019-007
- version/apple ios and macos/10.14.6-security_update_2020-001
- version/apple ios and macos/10.14.6-security_update_2020-002
- version/apple ios and macos/10.14.6-security_update_2020-003
- version/apple ios and macos/10.14.6-security_update_2020-004
- version/apple ios and macos/10.14.6-security_update_2020-005
- version/apple ios and macos/10.14.6-security_update_2020-006
- version/apple ios and macos/10.14.6-security_update_2020-007
- version/apple ios and macos/10.14.6-security_update_2021-001
- version/apple ios and macos/10.14.6-security_update_2021-002
- version/apple ios and macos/10.14.6-security_update_2021-003
- version/apple ios and macos/10.14.6-security_update_2021-004
- version/apple ios and macos/10.14.6-supplemental_update
- version/apple ios and macos/10.14.6-supplemental_update_2
- version/apple ios and macos/10.15
- version/apple ios and macos/10.15.1
- version/apple ios and macos/10.15.2
- version/apple ios and macos/10.15.3
- version/apple ios and macos/10.15.4
- version/apple ios and macos/10.15.5
- version/apple ios and macos/10.15.6
- version/apple ios and macos/10.15.6-supplemental_update
- version/apple ios and macos/10.15.7
- version/apple ios and macos/10.15.7-security_update_2020
- version/apple ios and macos/10.15.7-security_update_2020-001
- version/apple ios and macos/10.15.7-security_update_2020-005
- version/apple ios and macos/10.15.7-security_update_2020-007
- version/apple ios and macos/10.15.7-security_update_2021-001
- version/apple ios and macos/10.15.7-security_update_2021-002
- version/apple ios and macos/10.15.7-security_update_2021-003
- version/apple ios and macos/10.15.7-supplemental_update
- canonical/macos
- version/macos/11.0