关键漏洞信息 Audio Impact: A malicious application may be able to elevate privileges Description: An integer overflow was addressed through improved input validation. CVE: CVE-2021-30907 ColorSync Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: A memory corruption issue existed in the processing of ICC profiles. CVE: CVE-2021-30917 Continuity Camera Impact: A local attacker may be able to cause unexpected application termination or arbitrary code execution Description: An uncontrolled format string issue was addressed with improved input validation. CVE: CVE-2021-30903 CoreAudio Impact: Processing a maliciously crafted file may disclose user information Description: An out-of-bounds read was addressed with improved bounds checking. CVE: CVE-2021-30905 CoreGraphics Impact: Processing a maliciously crafted PDF may lead to arbitrary code execution Description: An out-of-bounds write was addressed with improved input validation. CVE: CVE-2021-30919 FileProvider Impact: A malicious application may be able to bypass Privacy preferences Description: A permissions issue was addressed with improved validation. CVE: CVE-2021-31007 FileProvider Impact: Unpacking a maliciously crafted archive may lead to arbitrary code execution Description: An input validation issue was addressed with improved memory handling. CVE: CVE-2021-30881 Game Center Impact: A malicious application may be able to access information about a user's contacts Description: A logic issue was addressed with improved restrictions. CVE: CVE-2021-30895 Game Center Impact: A malicious application may be able to read user's gameplay data Description: A logic issue was addressed with improved restrictions. CVE: CVE-2021-30896 iCloud Impact: A local attacker may be able to elevate their privileges Description: This issue was addressed with improved checks. CVE: CVE-2021-30906