Description
A logic issue was addressed with improved state management. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. Processing a maliciously crafted font file may lead to arbitrary code execution.
Affected products
- Apple / Security Update - Catalinaunspecified – 2021
References
- VENDOR_ADVISORYhttps://support.apple.com/en-us/HT212326
- VENDOR_ADVISORYhttps://support.apple.com/en-us/HT212327