- Safari is a graphical web browser developed by Apple Inc., based primarily on open-source software properties notably including WebKit.It was first introduced on Mac OS X Panther in 2003, and was later incorporated to the iPhone and iPod Touch with iPhone OS 1 in 2007. The software was currently supported on macOS, iOS, proceeding against a former Windows version offered from 2007 to 2012.
- Sep 16, 2020 In all the iOS 14, iPadOS 14, watchOS 7 and tvOS 14 noise, Apple has also released an update to Safari on the Mac. Bringing it up to version 14.0, this new release packs a bunch of enhancements.
- Jul 21, 2021 This document describes the security content of Safari 14.1.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available.
Are you looking for the How To Downgrade To Older Or Previous Safari Version then must check below guide that would help you to know more about solution. We have shared some of the helpful references links also to provide you more related information.
Older versions of OS X don't get the newest fixes from Apple. That's just the way software works. If the old version of OS X you're running doesn't get important updates to Safari anymore, you're going to have to update to a newer version of OS X first.
1. How to Downgrade to Older or Previous Safari Version?
https://browserhow.com/how-to-downgrade-to-older-or-previous-safari-version/
2. How to Downgrade Safari – Supported & Unsupported Options
https://mrmacintosh.com/how-to-downgrade-safari-14-to-13-supported-unsupported-options/
Oct. 5, 2020 — MrMacintosh.com – Do you need to downgrade Safari from version 14.0 to … Unsupported is what some users have done the past that might or …
3. How to downgrade Safari? – Apple Support Communities
https://discussions.apple.com/thread/7487452
Mar. 8, 2016 — Without a backup there is no way to revert to Safari 9.0.2. You would have to have the previous version, OS X 10.11.2 or before which you …
15 answers · FWIW, iOS is the mobile OS for iPhones and iPads.Without a backup there is no way to revert …
Q: how to downgrade from safari 14 to 13?? – Apple …
2 answers
Sep. 21, 2020
Q: How to replace Safari with an older version …
6 answers
Mar. 31, 2018
Q: how to downgrade from safari 13 to 12?? – Apple …
25 answers
Sep. 21, 2019
Need to downgrade Safari – Apple Support …
2 answers
Oct. 9, 2018
More results from discussions.apple.com
4. How to Downgrade Safari 14 to 13 Mojave! Still need Flash …
https://www.youtube.com/watch?v=zy477ZueTco
12:40
UPDATE 4/30/21 – This video will show you how to downgrade Safari. … Previous Video Part 2 – Mojave …
Oct. 5, 2020 · Uploaded by Mr. Macintosh
5. Downgrade Safari 13 to 12 | MacRumors Forums
https://forums.macrumors.com/threads/downgrade-safari-13-to-12.2199735/
Sep. 20, 2019 — I grabbed Safari 12 off a clone, but Finder won’t let me replace… … The last Safari update broke the Ublock origin ad blocker…. :mad:.
Downgrade Safari 14.0.3 to 14.0.1 (Big Sur 11.2 to Big Sur 11.1)
Feb. 8, 2021
How can you downgrade Safari? | MacRumors Forums
Mar. 8, 2014
Downgrading from Safari 12 | MacRumors Forums
Sep. 18, 2018
Revert back from Safari 11 | MacRumors Forums
Oct. 13, 2017
More results from forums.macrumors.com
6. 3 Ways to Downgrade to an Older Version of macOS
https://www.makeuseof.com/tag/downgrade-macos-version/
Dec. 1, 2019 — 1. Downgrade Using macOS Recovery · Fully shut down your Mac. · Power on your computer and immediately hold Shift + Option + Cmd + R. · Once the …
7. How to revert Safari design back the old, familiar version
https://www.idownloadblog.com/2021/09/22/revert-safari-design-tutorial/
7 days ago — How to switch between the old and new Safari design on iPhone · Open the Settings app on your iPhone · Choose Safari from the root list · Choose …
8. Is it possible to download and install multiple versions of …
https://apple.stackexchange.com/questions/386749/is-it-possible-to-download-and-install-multiple-versions-of-safari-on-macos
Mar. 31, 2020 — someone else told me I would just need to rename my old version as Legacy Safari or something like that and that I should still be able to …
2 answers · 2 votes: Updates to Safari tend to include updates to the WebKit system framework on which Safari …
Downgrade from Safari 12 to Safari 11 [duplicate] – Apple …
Sep. 22, 2018
Downgrading from Safari 12 (beta) to Safari 11 – Ask Different
Sep. 22, 2018
Downgrading from macOS Catalina to macOS High Sierra
Dec. 22, 2019
Debugging Web app running on a specific (older) version of …
Aug. 21, 2018
More results from apple.stackexchange.com
9. Downgrading Safari 12.0 to 11.1.2 – Apple – Spiceworks …
https://community.spiceworks.com/topic/2163751-downgrading-safari-12-0-to-11-1-2
Sep. 20, 2018 — Safari is built into the OS, so the only way to go back is to restore a Time Capsule backup from when you had the older version of Safari. Reply …
5 answers · 1 vote: I haven’t seen a way to downgrade, since Apple distributes Safari from the App Store they don’t …
10. Install an older version of Firefox – Mozilla Support
https://support.mozilla.org/en-US/kb/install-older-version-firefox
Downgrading to an older Firefox version doesn’t solve most problems. … may want to downgrade Firefox to a previous version but we do not recommend this.
11. Trick to revert Safari tabs to the old design no longer works in …
https://9to5mac.com/2021/06/28/trick-to-revert-safari-tabs-to-the-old-design-no-longer-works-in-macos-monterey-beta-2/
Jun. 28, 2021 — Apple this year introduced a completely redesigned version of Safari with iOS 15, iPadOS 15, and macOS Monterey. However, some users didn’t …
12. How do I revert to previous OS on Mac? – OS Today
https://ostoday.org/linux/how-do-i-revert-to-previous-os-on-mac.html
Is my Mac too old to update Safari? — If the old version of OS X you’re running doesn’t get important updates to Safari anymore, you’re going to …
About Apple security updates
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page.
Apple security documents reference vulnerabilities by CVE-ID when possible.
For more information about security, see the Apple Product Security page.
iOS 14.4 and iPadOS 14.4
Released January 26, 2021
Analytics
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause a denial of service
Description: This issue was addressed with improved checks.
CVE-2021-1761: Cees Elzinga
Entry added February 1, 2021, updated May 28, 2021
APFS
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A local user may be able to read arbitrary files
Description: The issue was addressed with improved permissions logic.
CVE-2021-1797: Thomas Tempelmann
Entry added February 1, 2021, updated May 28, 2021
Bluetooth
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause arbitrary code execution
Description: An out-of-bounds read was addressed with improved input validation.
CVE-2021-1794: Jianjun Dai of 360 Alpha Lab
Entry added February 1, 2021, updated May 28, 2021
Bluetooth
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause arbitrary code execution
Description: An out-of-bounds write was addressed with improved input validation.
CVE-2021-1795: Jianjun Dai of 360 Alpha Lab
CVE-2021-1796: Jianjun Dai of 360 Alpha Lab
Entry added February 1, 2021, updated May 28, 2021
Bluetooth
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: An attacker in a privileged position may be able to perform a denial of service attack
Description: A memory initialization issue was addressed with improved memory handling.
CVE-2021-1780: Jianjun Dai of 360 Alpha Lab
Entry added February 1, 2021, updated May 28, 2021
CoreAnimation
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A malicious application could execute arbitrary code leading to compromise of user information
Description: A memory corruption issue was addressed with improved state management.
CVE-2021-1760: @S0rryMybad of 360 Vulcan Team
Entry added February 1, 2021, updated May 28, 2021
CoreAudio
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing maliciously crafted web content may lead to code execution
Description: An out-of-bounds write was addressed with improved input validation.
CVE-2021-1747: JunDong Xie of Ant Security Light-Year Lab
Entry added February 1, 2021, updated May 28, 2021
CoreGraphics
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted font file may lead to arbitrary code execution
Description: An out-of-bounds write issue was addressed with improved bounds checking.
CVE-2021-1776: Ivan Fratric of Google Project Zero
Entry added February 1, 2021, updated May 28, 2021
CoreMedia
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to arbitrary code execution
Description: An out-of-bounds read was addressed with improved input validation.
CVE-2021-1759: Hou JingYi (@hjy79425575) of Qihoo 360 CERT
Entry added February 1, 2021, updated May 28, 2021
CoreText
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted text file may lead to arbitrary code execution
Description: A stack overflow was addressed with improved input validation.
CVE-2021-1772: Mickey Jin of Trend Micro working with Trend Micro’s Zero Day Initiative
Entry added February 1, 2021, updated May 28, 2021
CoreText
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause arbitrary code execution
Description: An out-of-bounds read was addressed with improved bounds checking.
CVE-2021-1792: Mickey Jin & Junzhi Lu of Trend Micro working with Trend Micro’s Zero Day Initiative
Entry added February 1, 2021, updated May 28, 2021
Crash Reporter
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A local user may be able to create or modify system files
Description: A logic issue was addressed with improved state management.
CVE-2021-1786: Csaba Fitzl (@theevilbit) of Offensive Security
Entry added February 1, 2021, updated May 28, 2021
Crash Reporter
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A local attacker may be able to elevate their privileges
Description: Multiple issues were addressed with improved logic.
CVE-2021-1787: James Hutchins
Entry added February 1, 2021, updated May 28, 2021
FairPlay
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A malicious application may be able to disclose kernel memory
Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation.
CVE-2021-1791: Junzhi Lu(@pwn0rz), Qi Sun and Mickey Jin of Trend Micro working with Trend Micro’s Zero Day Initiative
Entry added February 1, 2021, updated May 28, 2021
FontParser
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause arbitrary code execution
Description: An out-of-bounds read was addressed with improved bounds checking.
CVE-2021-1758: Peter Nguyen of STAR Labs
Entry added February 1, 2021, updated May 28, 2021
ImageIO
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to a denial of service
Description: A logic issue was addressed with improved state management.
CVE-2021-1773: Xingwei Lin of Ant Security Light-Year Lab
Entry added February 1, 2021, updated May 28, 2021
ImageIO
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to a denial of service
Description: This issue was addressed with improved checks.
CVE-2021-1766: Danny Rosseau of Carve Systems
Entry added February 1, 2021, updated May 28, 2021
ImageIO
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to arbitrary code execution
Description: An out-of-bounds read was addressed with improved input validation.
CVE-2021-1785: Xingwei Lin of Ant Security Light-Year Lab
Entry added February 1, 2021, updated May 28, 2021
ImageIO
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to arbitrary code execution
Description: An out-of-bounds write was addressed with improved input validation.
CVE-2021-1737: Xingwei Lin of Ant Security Light-Year Lab
CVE-2021-1738: Lei Sun
CVE-2021-1744: Xingwei Lin of Ant Security Light-Year Lab
Entry added February 1, 2021, updated May 28, 2021
ImageIO
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause unexpected application termination or arbitrary code execution
Description: A logic issue was addressed with improved state management.
CVE-2021-1818: Xingwei Lin of Ant-Financial Light-Year Security Lab
Entry added February 1, 2021, updated May 28, 2021
ImageIO
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to arbitrary code execution
Description: This issue was addressed with improved checks.
CVE-2021-1838: Mickey Jin & Qi Sun of Trend Micro working with Trend Micro's Zero Day Initiative
CVE-2021-1742: Xingwei Lin of Ant Security Light-Year Lab
CVE-2021-1746: Xingwei Lin of Ant Security Light-Year Lab, Mickey Jin & Qi Sun of Trend Micro working with Trend Micro’s Zero Day Initiative, and Jeonghoon Shin(@singi21a) of THEORI
CVE-2021-1754: Xingwei Lin of Ant Security Light-Year Lab
CVE-2021-1774: Xingwei Lin of Ant Security Light-Year Lab
CVE-2021-1793: Xingwei Lin of Ant Security Light-Year Lab
Entry added February 1, 2021, updated May 28, 2021
ImageIO
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to arbitrary code execution
Description: An out-of-bounds read was addressed with improved bounds checking.
CVE-2021-1741: Xingwei Lin of Ant Security Light-Year Lab
CVE-2021-1743: Mickey Jin & Junzhi Lu of Trend Micro working with Trend Micro’s Zero Day Initiative, Xingwei Lin of Ant Security Light-Year Lab
Entry added February 1, 2021, updated May 28, 2021
ImageIO
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to a denial of service
Description: An out-of-bounds read issue existed in the curl. This issue was addressed with improved bounds checking.
CVE-2021-1778: Xingwei Lin of Ant Security Light-Year Lab
Entry added February 1, 2021, updated May 28, 2021
ImageIO
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to arbitrary code execution
Description: An access issue was addressed with improved memory management.
CVE-2021-1783: Xingwei Lin of Ant Security Light-Year Lab
Entry added February 1, 2021, updated May 28, 2021
IOSkywalkFamily
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A local attacker may be able to elevate their privileges
Description: An out-of-bounds read was addressed with improved bounds checking.
CVE-2021-1757: Proteas and Pan ZhenPeng (@Peterpan0927) of Alibaba Security
Entry added February 1, 2021, updated May 28, 2021
iTunes Store
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted URL may lead to arbitrary javascript code execution
Description: A validation issue was addressed with improved input sanitization.
CVE-2021-1748: CodeColorist working with Ant Security Light-Year Labs
Entry added February 1, 2021, updated May 28, 2021
Kernel
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause a denial of service
Description: A use after free issue was addressed with improved memory management.
CVE-2021-1764: @m00nbsd
Entry added February 1, 2021, updated May 28, 2021
Kernel
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: Multiple issues were addressed with improved logic.
CVE-2021-1750: @0xalsr
Entry added February 1, 2021, updated May 28, 2021
Kernel
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited.
Description: A race condition was addressed with improved locking.
CVE-2021-1782: an anonymous researcher
Apple Safari 14 Update
Entry updated May 28, 2021
Messages
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A malicious application may be able to leak sensitive user information
Description: A privacy issue existed in the handling of Contact cards. This was addressed with improved state management.
CVE-2021-1781: Csaba Fitzl (@theevilbit) of Offensive Security
Entry added February 1, 2021, updated May 28, 2021
Model I/O
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution
Description: A buffer overflow was addressed with improved bounds checking.
CVE-2021-1763: Mickey Jin of Trend Micro working with Trend Micro’s Zero Day Initiative
Entry added February 1, 2021, updated May 28, 2021
Model I/O
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution
Description: An out-of-bounds read was addressed with improved bounds checking.
CVE-2021-1768: Mickey Jin & Junzhi Lu of Trend Micro working with Trend Micro’s Zero Day Initiative
Entry added February 1, 2021, updated May 28, 2021
Model I/O
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution
Description: An out-of-bounds read was addressed with improved input validation.
CVE-2021-1745: Mickey Jin & Junzhi Lu of Trend Micro working with Trend Micro’s Zero Day Initiative
Entry added February 1, 2021, updated May 28, 2021
Model I/O
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution
Description: An out-of-bounds write was addressed with improved input validation.
CVE-2021-1762: Mickey Jin of Trend Micro
Entry added February 1, 2021, updated May 28, 2021
Model I/O
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution
Description: An out-of-bounds write was addressed with improved input validation.
CVE-2021-1762: Mickey Jin of Trend Micro working with Trend Micro’s Zero Day Initiative
Entry added February 1, 2021, updated May 28, 2021
Model I/O
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to heap corruption
Description: This issue was addressed with improved checks.
CVE-2021-1767: Mickey Jin & Junzhi Lu of Trend Micro working with Trend Micro’s Zero Day Initiative
Entry added February 1, 2021, updated May 28, 2021
Model I/O
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to arbitrary code execution
Description: An out-of-bounds read was addressed with improved bounds checking.
CVE-2021-1753: Mickey Jin of Trend Micro
Entry added February 1, 2021, updated May 28, 2021
Model I/O
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing a maliciously crafted image may lead to arbitrary code execution
Description: An out-of-bounds read was addressed with improved bounds checking.
CVE-2021-1753: Mickey Jin of Trend Micro working with Trend Micro’s Zero Day Initiative
Entry added February 1, 2021, updated May 28, 2021
Phone Keypad
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: An attacker with physical access to a device may be able to see private contact information
Description: A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management.
CVE-2021-1756: Ryan Pickren (ryanpickren.com)
Entry added February 1, 2021, updated May 28, 2021
Swift
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication
Description: A logic issue was addressed with improved validation.
CVE-2021-1769: CodeColorist of Ant-Financial Light-Year Labs
Entry added February 1, 2021, updated May 28, 2021
WebKit
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A use after free issue was addressed with improved memory management.
CVE-2021-1788: Francisco Alonso (@revskills)
Entry added February 1, 2021, updated May 28, 2021
WebKit
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A type confusion issue was addressed with improved state handling.
CVE-2021-1789: @S0rryMybad of 360 Vulcan Team
Entry added February 1, 2021, updated May 28, 2021
WebKit
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Maliciously crafted web content may violate iframe sandboxing policy
Description: This issue was addressed with improved iframe sandbox enforcement.
CVE-2021-1801: Eliya Stein of Confiant
Entry added February 1, 2021, updated May 28, 2021
WebKit
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Description: A logic issue was addressed with improved restrictions.
CVE-2021-1871: an anonymous researcher
CVE-2021-1870: an anonymous researcher
Entry updated May 28, 2021
WebRTC
Available for: iPhone 6s and later, iPad Pro (all models) iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A malicious website may be able to access restricted ports on arbitrary servers
Description: A port redirection issue was addressed with additional port validation.
What Is The Latest Safari Version
CVE-2021-1799: Gregory Vishnepolsky & Ben Seri of Armis Security, and Samy Kamkar
Entry added February 1, 2021, updated May 28, 2021
XNU
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: A type confusion issue was addressed with improved state handling.
CVE-2021-30869: Apple
Entry added September 23, 2021
Additional recognition
iTunes Store
We would like to acknowledge CodeColorist of Ant-Financial Light-Year Labs for their assistance.
Entry added February 1, 2021
Kernel
We would like to acknowledge Junzhi Lu (@pwn0rz), Mickey Jin & Jesse Change of Trend Micro for their assistance.
Update Safari
Entry added February 1, 2021
libpthread
We would like to acknowledge CodeColorist of Ant-Financial Light-Year Labs for their assistance.
Entry added February 1, 2021
We would like to acknowledge Yiğit Can YILMAZ (@yilmazcanyigit) and an anonymous researcher for their assistance.
Safari 14.1 Download For Windows
Entry added February 1, 2021
Store Demo
We would like to acknowledge @08Tc3wBB for their assistance.
Entry added February 1, 2021
WebRTC
We would like to acknowledge Philipp Hancke for their assistance.
Apple Safari Version 14
Entry added February 1, 2021
Wi-Fi
We would like to acknowledge an anonymous researcher for their assistance.
Apple Safari Free Download
Entry added February 1, 2021
Comments are closed.