CVE-2021-30982: Race Condition
First published: Tue Aug 24 2021(Updated: )
A race condition was addressed with improved locking. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A remote attacker may be able to cause unexpected application termination or heap corruption.
Credit: Weiteng Chen Zheng Zhang Zhiyun Qian UC Riverside Yu Wang Didi Research AmericaWeiteng Chen Zheng Zhang Zhiyun Qian UC Riverside Yu Wang Didi Research America cve@mitre.org Weiteng Chen Zheng Zhang Zhiyun Qian UC Riverside Yu Wang Didi Research America
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Catalina | ||
| Apple macOS Monterey | <12.1 | 12.1 |
| Apple Mac OS X | >=10.15<10.15.7 | |
| Apple Mac OS X | =10.15.7 | |
| Apple Mac OS X | =10.15.7-security_update_2020-001 | |
| Apple Mac OS X | =10.15.7-security_update_2021-001 | |
| Apple Mac OS X | =10.15.7-security_update_2021-002 | |
| Apple Mac OS X | =10.15.7-security_update_2021-003 | |
| Apple Mac OS X | =10.15.7-security_update_2021-004 | |
| Apple Mac OS X | =10.15.7-security_update_2021-005 | |
| Apple Mac OS X | =10.15.7-security_update_2021-006 | |
| Apple Mac OS X | =10.15.7-security_update_2021-007 | |
| Apple Mac OS X | =10.15.7-supplemental_update | |
| Apple macOS | >=11.0<11.6.2 | |
| Apple macOS | >=12.0<12.1 | |
| Apple macOS | <11.6.2 | 11.6.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT212981 (Advisory)
- https://support.apple.com/en-us/HT212978 (Advisory)
- https://support.apple.com/en-us/HT212979 (Advisory)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-30950
- CVE-2021-30931
- CVE-2021-30935
- CVE-2021-30942
- CVE-2021-30958
- CVE-2021-30959
- CVE-2021-30961
- CVE-2021-30963
- CVE-2021-30945
- CVE-2021-30977
- CVE-2021-30969
- CVE-2021-30939
- CVE-2021-30981
- CVE-2021-30982
- CVE-2021-30927
- CVE-2021-30980
- CVE-2021-30937
- CVE-2021-30949
- CVE-2021-30990
- CVE-2021-30976
- CVE-2021-30929
- CVE-2021-30979
- CVE-2021-30940
- CVE-2021-30941
- CVE-2021-30973
- CVE-2021-30971
- CVE-2021-30995
- CVE-2021-30968
- CVE-2021-30975
- CVE-2021-30767
- CVE-2021-30965
- CVE-2021-30938
- CVE-2021-30987
- CVE-2021-30960
- CVE-2021-30986
- CVE-2021-30966
- CVE-2021-30926
- CVE-2021-30957
- CVE-2021-31007
- CVE-2021-31013
- CVE-2021-31000
- CVE-2021-30996
- CVE-2021-30993
- CVE-2021-30955
- CVE-2021-30943
- CVE-2021-31009
- CVE-2021-30946
- CVE-2021-30947
- CVE-2021-30944
- CVE-2021-30972
- CVE-2021-30964
- CVE-2021-30970
- CVE-2021-30934
- CVE-2021-30936
- CVE-2021-30951
- CVE-2021-30952
- CVE-2021-30984
- CVE-2021-30953
- CVE-2021-30954
- CVE-2021-30962
- CVE-2021-30895
- CVE-2021-31002
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2021-30982.
What is the title of the vulnerability?
The title of the vulnerability is IOUSBHostFamily. A race condition was addressed with improved locking.
What is the description of the vulnerability?
The description of the vulnerability is IOUSBHostFamily. A race condition was addressed with improved locking.
Which software versions are affected by this vulnerability?
This vulnerability affects macOS Monterey (version up to 12.1), macOS Big Sur (version up to 11.6.2), and Apple Catalina.
Are there any remediation steps available?
Yes, Apple has released updates to address this vulnerability. Please refer to the references provided for more information.
What is the Common Weakness Enumeration (CWE) ID for this vulnerability?
The CWE ID for this vulnerability is 362.
- collector/apple-support
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/event
- agent/description
- agent/first-publish-date
- agent/trending
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/apple
- canonical/apple catalina
- canonical/apple macos monterey
- canonical/apple mac os x
- version/apple mac os x/10.15
- version/apple mac os x/10.15.7
- version/apple mac os x/10.15.7-security_update_2020-001
- version/apple mac os x/10.15.7-security_update_2021-001
- version/apple mac os x/10.15.7-security_update_2021-002
- version/apple mac os x/10.15.7-security_update_2021-003
- version/apple mac os x/10.15.7-security_update_2021-004
- version/apple mac os x/10.15.7-security_update_2021-005
- version/apple mac os x/10.15.7-security_update_2021-006
- version/apple mac os x/10.15.7-security_update_2021-007
- version/apple mac os x/10.15.7-supplemental_update
- canonical/apple macos
- version/apple macos/11.0
- version/apple macos/12.0