https://googleprojectzero.blogspot.com/2019/08/jsc-exploits.html … <-- on patch gapping and n-day bugs being used as an easy way to score 0-day like capabilities (via @itswillis)
-
-
With WebKit, the update cadence appears to be tied to OS releases, so the time frames can be uncomfortably long. That's probably a good place to start: find a way to update WKWebView and Safari through the App Store, and set up a biweekly release cadence.
-
Of course I suspect there's good reasons why that hasn't happened yet! Network data overhead, storage space, performance, maintenance complexity, etc. But ultimately I think it's worth doing.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.