Unrated severityNVD Advisory· Published Oct 19, 2021· Updated Aug 3, 2024
CVE-2021-30846
CVE-2021-30846
Description
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing maliciously crafted web content may lead to arbitrary code execution.
Affected products
48- osv-coords44 versionspkg:rpm/almalinux/webkit2gtk3pkg:rpm/almalinux/webkit2gtk3-develpkg:rpm/almalinux/webkit2gtk3-jscpkg:rpm/almalinux/webkit2gtk3-jsc-develpkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/webkit2gtk3&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 2.34.6-1.el8+ 43 more
- (no CPE)range: < 2.34.6-1.el8
- (no CPE)range: < 2.34.6-1.el8
- (no CPE)range: < 2.34.6-1.el8
- (no CPE)range: < 2.34.6-1.el8
- (no CPE)range: < 2.34.1-lp152.2.25.3
- (no CPE)range: < 2.34.1-18.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.1-18.1
- (no CPE)range: < 2.34.1-18.1
- (no CPE)range: < 2.34.1-18.1
- (no CPE)range: < 2.34.1-18.1
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.1-3.87.1
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.3-23.3
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-2.77.1
- (no CPE)range: < 2.34.1-2.77.1
- Range: unspecified
- Range: unspecified
- Range: unspecified
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
18- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H6MGXCX7P5AHWOQ6IRT477UKT7IS4DAD/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ON5SDVVPVPCAGFPW2GHYATZVZYLPW2L4/mitrevendor-advisoryx_refsource_FEDORA
- www.debian.org/security/2021/dsa-4995mitrevendor-advisoryx_refsource_DEBIAN
- www.debian.org/security/2021/dsa-4996mitrevendor-advisoryx_refsource_DEBIAN
- seclists.org/fulldisclosure/2021/Oct/60mitremailing-listx_refsource_FULLDISC
- seclists.org/fulldisclosure/2021/Oct/61mitremailing-listx_refsource_FULLDISC
- seclists.org/fulldisclosure/2021/Oct/62mitremailing-listx_refsource_FULLDISC
- seclists.org/fulldisclosure/2021/Oct/63mitremailing-listx_refsource_FULLDISC
- www.openwall.com/lists/oss-security/2021/10/26/9mitremailing-listx_refsource_MLIST
- www.openwall.com/lists/oss-security/2021/10/27/1mitremailing-listx_refsource_MLIST
- www.openwall.com/lists/oss-security/2021/10/27/2mitremailing-listx_refsource_MLIST
- www.openwall.com/lists/oss-security/2021/10/27/4mitremailing-listx_refsource_MLIST
- support.apple.com/en-us/HT212807mitrex_refsource_MISC
- support.apple.com/en-us/HT212814mitrex_refsource_MISC
- support.apple.com/en-us/HT212815mitrex_refsource_MISC
- support.apple.com/en-us/HT212816mitrex_refsource_MISC
- support.apple.com/en-us/HT212819mitrex_refsource_MISC
- support.apple.com/kb/HT212869mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.