Some of Our Sources
- Mashable
- Just Creative
- Spoon Graphics
- Web Designer Depot
- Crazy Leaf Design
- Line 25
- Stylized Web
- Spyre Studios
- Dev To
- The Verge
Help Webnuz
Referal links:
October 29, 2016 10:00 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/l_TKbJVWVcs/googles-project-zero-hid-a-major-vulnerability-in-apples-os-and-ios-cores
Google's 'Project Zero' Hid A Major Vulnerability in Apple's OS and iOS Cores
In June Google's task-force against zero day exploits "identified a coding exploit in the underlying kernel of Apple's OSX and it's mobile operating system iOS, which could allow for root-level escalation of privileges for an attacker in a non-updated version of the OS," according to The Stack. An anonymous reader writes that Google "initially refused Apple's request for sixty days' grace, but eventually settled on September 21st for disclosure. But when Apple's last-minute September fix turned out to be ineffective, Project Zero agreed to keep quiet, eventually granting Apple nearly five months of silence about the task_t bug -- which has now been fixed in the latest updates to Mac OS and iOS."The fix was released Monday, the Stack reports:Since the task_t bug allows the user to gain any entitlements they may want, it could also nullify kernel code signing, which would allow unauthorized programs to run with elevated privileges on a Mac system. Any current OSX or iOS user who has applied the latest system updates is not susceptible to the task_t vulnerability.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/l_TKbJVWVcs/googles-project-zero-hid-a-major-vulnerability-in-apples-os-and-ios-cores
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot