|
You are here |
blog.0patch.com | ||
| | | | |
reverse.put.as
|
|
| | | | | Today a local privilege escalation vulnerability was disclosed in this blog post. It describes a vulnerability in IOBluetoothFamily kernel extension (IOKit is a never-ending hole of security vulnerabilities). Mavericks and most probably all previous versions are vulnerable but not Yosemite. The reason for this is that Apple silently patched the bug in Yosemite. This is not a new practice, where Apple patches bugs in the latest and newly released OS X version and doesn't care about older versions. | |
| | | | |
blog.acrossecurity.com
|
|
| | | | | Keeping binary planting bugs out of 120 million lines of code In the course of the ongoing binary planting research ,our company has disc... | |
| | | | |
pwning.systems
|
|
| | | | | Earlier this year, I discovered a flaw in XNU, which is the kernel that Apple uses on both macOS and iOS. While it's not a particularly complicated flaw, I wanted to explain how I discovered it and how it works, both so that I can motivate others and so that they can learn from my discovery. Within the memdev.c file (the ramdisk device driver), I found the source of the vulnerability, which was a write/read operation that exceeded the allowed range. | |
| | | | |
googleblog.blogspot.com
|
|
| | | Insights from Googlers into our products, technology, and the Google culture | ||