In SwiftNIO Extras before 1.4.1, a logic issue was addressed with improved restrictions.
| CVE ID | Name | Status | References |
|---|---|---|---|
| CVE-2020-9840 | In SwiftNIO Extras before 1.4.1, a logic issue was addressed with improved restrictions. |
Assigned (20200302) | MISC:https://github.com/apple/swift-nio-extras/security/advisories/GHSA-xhhr-p2r9-jmm7 |
| CVE-2020-9785 | Multiple memory corruption issues were addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to execute arbitrary code with kernel privileges. |
Assigned (20200302) | MISC:https://support.apple.com/HT211100 | MISC:https://support.apple.com/HT211101 | MISC:https://support.apple.com/HT211102 | MISC:https://support.apple.com/HT211103 |
| CVE-2020-9784 | A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1. A malicious iframe may use another website’s download settings. |
Assigned (20200302) | MISC:https://support.apple.com/HT211104 |
| CVE-2020-9783 | A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to code execution. |
Assigned (20200302) | MISC:https://support.apple.com/HT211101 | MISC:https://support.apple.com/HT211102 | MISC:https://support.apple.com/HT211104 | MISC:https://support.apple.com/HT211105 | MISC:https://support.apple.com/HT211106 | MISC:https://support.apple.com/HT211107 |
| CVE-2020-9781 | The issue was addressed by clearing website permission prompts after navigation. This issue is fixed in iOS 13.4 and iPadOS 13.4. A user may grant website permissions to a site they didn't intend to. |
Assigned (20200302) | MISC:https://support.apple.com/HT211102 |
| CVE-2020-9780 | The issue was resolved by clearing application previews when content is deleted. This issue is fixed in iOS 13.4 and iPadOS 13.4. A local user may be able to view deleted content in the app switcher. |
Assigned (20200302) | MISC:https://support.apple.com/HT211102 |
| CVE-2020-9777 | An issue existed in the selection of video file by Mail. The issue was fixed by selecting the latest version of a video. This issue is fixed in iOS 13.4 and iPadOS 13.4. Cropped videos may not be shared properly via Mail. |
Assigned (20200302) | MISC:https://support.apple.com/HT211102 |
| CVE-2020-9776 | This issue was addressed with a new entitlement. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to access a user's call history. |
Assigned (20200302) | MISC:https://support.apple.com/HT211100 |
| CVE-2020-9775 | An issue existed in the handling of tabs displaying picture in picture video. The issue was corrected with improved state handling. This issue is fixed in iOS 13.4 and iPadOS 13.4. A user's private browsing activity may be unexpectedly saved in Screen Time. |
Assigned (20200302) | CONFIRM:https://support.apple.com/kb/HT211100 | MISC:https://support.apple.com/HT211102 |
| CVE-2020-9773 | The issue was addressed with improved handling of icon caches. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to identify what other applications a user has installed. |
Assigned (20200302) | MISC:https://support.apple.com/HT211100 | MISC:https://support.apple.com/HT211101 | MISC:https://support.apple.com/HT211102 | MISC:https://support.apple.com/HT211103 |
Page created: