CVE-2020-9956

Name of the Vulnerable Software and Affected Versions macOS Big Sur versions prior to 11.0.1 macOS Big Sur version 11.1 tvOS version 14.0 macOS Catalina versions prior to Security Update 2020-001 macOS Mojave versions prior to Security Update 2020-007 watchOS version 7.0 iOS version 14.0 iPadOS version 14.0

Description An out-of-bounds read issue was addressed with improved input validation. Processing a maliciously crafted font file may lead to arbitrary code execution.

Recommendations For macOS Big Sur versions prior to 11.0.1, update to macOS Big Sur 11.0.1 or later. For macOS Big Sur version 11.1, no additional action is required as this version already includes the fix. For tvOS version 14.0, no additional action is required as this version already includes the fix. For macOS Catalina versions prior to Security Update 2020-001, apply Security Update 2020-001 or later. For macOS Mojave versions prior to Security Update 2020-007, apply Security Update 2020-007 or later. For watchOS version 7.0, no additional action is required as this version already includes the fix. For iOS version 14.0, no additional action is required as this version already includes the fix. For iPadOS version 14.0, no additional action is required as this version already includes the fix.