iOS 11.4 patched kernel memory corruption bugs I reported in two distinct areas: mptcp and vfs. My exploit for the mptcp bug is here: https://bugs.chromium.org/p/project-zero/issues/detail?id=1558 … Please read the README. It requires an Apple developer cert.
-
Prikaži ovu nit
-
That is the same bug as already publicly documented from the patch by
@elvanderb and exploited by@jaakerblom, see John's repo here:https://github.com/potmdehex/multipath_kfree …86 proslijeđenih tweetova 454 korisnika označavaju da im se sviđaPrikaži ovu nit -
The vfs bug doesn't require an Apple developer cert but is considerably harder to exploit. You get to write 8 NULL bytes off the end of a kalloc.16 buffer. It's sufficiently hard to exploit that it's worth trying just to demonstrate that such issues are reliably exploitable...
86 proslijeđenih tweetova 494 korisnika označavaju da im se sviđaPrikaži ovu nit -
see eg The Poisoned Nul Byte, 2014 by
@scarybeasts https://googleprojectzero.blogspot.com/2014/08/the-poisoned-nul-byte-2014-edition.html … . But it takes time. The mptcp exploit is mostly recycled bits of earlier exploits. The getvolattrlist bug needs some new techniques.83 proslijeđena tweeta 468 korisnika označava da im se sviđaPrikaži ovu nit -
The trigger is here: https://bugs.chromium.org/p/project-zero/issues/detail?id=1564 … If you're in to iOS exploit dev take a go at it and blog about it! I'll publish what I have soon, hopefully this week.
26 replies 165 proslijeđenih tweetova 779 korisnika označava da im se sviđaPrikaži ovu nit -
Odgovor korisniku/ci @i41nbeer
Cydia 11.3.1 when come out
1 reply 0 proslijeđenih tweetova 1 korisnik označava da mu se sviđa
Please don’t start , when it’s ready it’s ready
-
-
Odgovor korisnicima @Javier___Torres @i41nbeer
Here comes the babies...
0 replies 0 proslijeđenih tweetova 1 korisnik označava da mu se sviđaHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
/