CVE-2021-30799: 
Rocky Linux vulnerability analysis and mitigation

CVE-2021-30799 is a memory corruption vulnerability affecting Apple's WebKit browser engine. The vulnerability was discovered and reported by Sergei Glazunov of Google Project Zero, and was fixed in iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, and Security Update 2021-005 Mojave, released in July 2021. The vulnerability affects multiple Apple operating systems and their WebKit implementations (Apple Security, NVD).

The vulnerability is classified as a memory corruption issue in WebKit that was addressed with improved memory handling. It has been assigned a CVSS v3.1 Base Score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. The vulnerability is also categorized under CWE-787 (Out-of-bounds Write) (NVD).

When exploited, processing maliciously crafted web content may lead to arbitrary code execution on the affected system. This could allow attackers to execute unauthorized code and potentially take control of the affected device (Apple Security, NVD).

Apple has released security updates to address this vulnerability in multiple operating system versions: iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, and Security Update 2021-005 Mojave. Users are advised to update their systems to these versions or later to protect against this vulnerability (Apple Security).