#VU51809 Out-of-bounds write in macOS - CVE-2020-27897

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the handling of numerous IOCTLs in the AppleIntelKBLGraphics kext in Intel Graphics Driver. A local user can run a specially crafted program to  trigger out-of-bounds write and execute arbitrary code on the target system.

Remediation

External links

• https://support.apple.com/en-us/HT212011
• https://www.zerodayinitiative.com/advisories/ZDI-21-388/
• https://www.zerodayinitiative.com/advisories/ZDI-21-397/
• https://www.zerodayinitiative.com/advisories/ZDI-21-396/
• https://www.zerodayinitiative.com/advisories/ZDI-21-395/
• https://www.zerodayinitiative.com/advisories/ZDI-21-394/
• https://www.zerodayinitiative.com/advisories/ZDI-21-393/
• https://www.zerodayinitiative.com/advisories/ZDI-21-392/
• https://www.zerodayinitiative.com/advisories/ZDI-21-391/
• https://www.zerodayinitiative.com/advisories/ZDI-21-390/
• https://www.zerodayinitiative.com/advisories/ZDI-21-387/
• https://www.zerodayinitiative.com/advisories/ZDI-21-386/
• https://www.zerodayinitiative.com/advisories/ZDI-21-385/
• https://www.zerodayinitiative.com/advisories/ZDI-21-384/
• https://www.zerodayinitiative.com/advisories/ZDI-21-383/
• https://www.zerodayinitiative.com/advisories/ZDI-21-382/
• https://www.zerodayinitiative.com/advisories/ZDI-21-381/
• https://www.zerodayinitiative.com/advisories/ZDI-21-380/
• https://www.zerodayinitiative.com/advisories/ZDI-21-379/
• https://www.zerodayinitiative.com/advisories/ZDI-21-378/
• https://www.zerodayinitiative.com/advisories/ZDI-21-486/