iOS 14.6 and iPadOS 14.6 Security Content Release Date: May 24, 2021 Key Vulnerabilities: CVE-2021-30707: - Impact: Malicious audio file can lead to arbitrary code execution. - Description: Resolved with improved checks. CVE-2021-30685: - Impact: Parsing malicious audio file can lead to information disclosure. - Description: Resolved with better checks. - Contributor: Mickey Jin (@patch1t) of Trend Micro CVE-2021-30724: - Impact: Race condition can cause system termination or kernel memory write. - Description: Resolved with better state handling. - Contributor: @08Tc3wBB of ZecOps, and George Nosenko CVE-2021-30729: - Impact: Invalid activation results accepted by the device. - Description: Logic issue resolved with better restrictions. - Contributor: Christian Mina CVE-2021-30795: - Impact: Symlink handling vulnerability can allow root privilege escalation. - Description: Logic issue resolved with validation enhancements. - Contributor: Zhongcheng Li (CKO1) Other Vulnerabilities: - CoreAudio, CoreText, Crash Reporter, CVMS, FontParser, Heimdal, ImageIO (multiple instances), Kernel (multiple instances), LaunchServices, Mail, MediaRemote, Model I/O (multiple instances), Networking, Notes, Safari, Security, WebKit (multiple instances), WebRTC, Wi-Fi Additional Recognition Contributions acknowledged from various researchers and teams, including Trend Micro, ZecOps, Cisco Talos, and others. ``` This简洁的markdown总结了从网页截图中获取的关于iOS 14.6和iPadOS 14.6的关键漏洞信息。