Shulou(Shulou.com)05/31 Report--

Today, the editor will take you to know what Apple fixes the code execution vulnerabilities in iOS and iPadOS. The knowledge points in this article are very detailed. Friends who think it is helpful can browse the content of the article with the editor, hoping to help more friends who want to solve this problem to find the answer to the problem. Let's follow the editor to learn more about "what are the code execution vulnerabilities in iOS and iPadOS repaired by Apple".

Apple fixed several serious code execution vulnerabilities affecting its iOS and iPadOS mobile operating systems this week.

The IT giant released iOS 14.3 and iPadOS 14.3, fixing 11 security vulnerabilities, including code execution vulnerabilities.

An attacker can use malicious font files to exploit the most serious vulnerabilities to execute malicious code on Apple iPhone and iPad. The vendor fixed two font parsing vulnerabilities CVE-2020-27943 and CVE-2020-27944.

Apple said in a security bulletin that these two vulnerabilities exist in the FontParser component and that there is a memory corruption in the ability to process font files, which has been fixed by optimizing input validation.

This time, Apple has also fixed two memory corruption vulnerabilities that can be used by attackers to execute arbitrary code in input validation for certain font files.

The company has fixed three other security vulnerabilities affecting the ImageIO programming interface framework (CVE-2020-29617 cvetel 2020-29618), which can be exploited by attackers to execute arbitrary code using specially constructed images.

The company has also fixed an out-of-bounds write vulnerability that allows attackers to execute arbitrary code using maliciously constructed audio files.

Finally, Apple fixes a logic vulnerability in App Store that can cause enterprise application installations to display incorrect domains.

Thank you for your reading, the above is the whole content of "what are the code execution vulnerabilities in iOS and iPadOS fixed by Apple". Friends who learn to learn to do it quickly. I believe that the editor will certainly bring you better quality articles. Thank you for your support to the website!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.