Total vulnerabilities in the database
An out-of-bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 uses SPECS data from binary USD files. A specially crafted malformed file can trigger an out-of-bounds memory access and modification which results in memory corruption. To trigger this vulnerability, the victim needs to access an attacker-provided malformed file.
| Software | From | Fixed in |
|---|---|---|
| pixar / openusd | 20.05 | 20.05.x |
| apple / mac_os_x | 10.15 | 10.15.7 |
| apple / mac_os_x | 10.14.0 | 10.14.6 |
| apple / mac_os_x | 10.14.6-security_update_2020-001 | 10.14.6-security_update_2020-001.x |
| apple / mac_os_x | 10.14.6-security_update_2020-002 | 10.14.6-security_update_2020-002.x |
| apple / mac_os_x | 10.14.6-security_update_2020-003 | 10.14.6-security_update_2020-003.x |
| apple / mac_os_x | 10.14.6-security_update_2020-004 | 10.14.6-security_update_2020-004.x |
| apple / mac_os_x | 10.14.6-security_update_2020-005 | 10.14.6-security_update_2020-005.x |
| apple / mac_os_x | 10.14.6-security_update_2020-006 | 10.14.6-security_update_2020-006.x |
| apple / mac_os_x | 10.14.6-security_update_2019-007 | 10.14.6-security_update_2019-007.x |
| apple / mac_os_x | 10.14.6-security_update_2019-004 | 10.14.6-security_update_2019-004.x |
| apple / mac_os_x | 10.14.6-security_update_2019-005 | 10.14.6-security_update_2019-005.x |
| apple / mac_os_x | 10.14.6-security_update_2019-006 | 10.14.6-security_update_2019-006.x |
| apple / mac_os_x | 10.14.6-supplemental_update | 10.14.6-supplemental_update.x |
| apple / mac_os_x | 10.14.6-supplemental_update_2 | 10.14.6-supplemental_update_2.x |
| apple / mac_os_x | 10.14.6-security_update_2019-001 | 10.14.6-security_update_2019-001.x |
| apple / mac_os_x | 10.14.6-security_update_2019-002 | 10.14.6-security_update_2019-002.x |
| apple / mac_os_x | 10.15.7-security_update_2020-001 | 10.15.7-security_update_2020-001.x |
| apple / macos | 11.0 | 11.1 |