CVE-2020-9849
Published: 08 December 2020
An information disclosure issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0, iTunes for Windows 12.10.9, iCloud for Windows 11.5, tvOS 14.0. A remote attacker may be able to leak memory.
Priority
Low
CVSS 3 base score: 6.5
Status
| Package | Release | Status |
|---|---|---|
|
sqlite Launchpad, Ubuntu, Debian |
Upstream |
Needs triage
|
| Ubuntu 21.04 (Hirsute Hippo) |
Deferred
|
|
| Ubuntu 20.10 (Groovy Gorilla) |
Deferred
|
|
| Ubuntu 20.04 LTS (Focal Fossa) |
Deferred
|
|
| Ubuntu 18.04 LTS (Bionic Beaver) |
Deferred
|
|
| Ubuntu 16.04 ESM (Xenial Xerus) |
Ignored
(end of standard support, was deferred)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Deferred
|
|
|
sqlite3 Launchpad, Ubuntu, Debian |
Upstream |
Needs triage
|
| Ubuntu 21.04 (Hirsute Hippo) |
Deferred
|
|
| Ubuntu 20.10 (Groovy Gorilla) |
Deferred
|
|
| Ubuntu 20.04 LTS (Focal Fossa) |
Deferred
|
|
| Ubuntu 18.04 LTS (Bionic Beaver) |
Deferred
|
|
| Ubuntu 16.04 ESM (Xenial Xerus) |
Deferred
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Deferred
|
Notes
| Author | Note |
|---|---|
| mdeslaur | This may be an Apple-specific CVE, as of 2021-02-08, no details are available as to what the upstream fix is. |