• Re: iOS 15.0.2 is out

    From Robin Goodfellow@21:1/5 to nospam on Tue Oct 12 17:19:10 2021
    XPost: misc.phone.mobile.iphone, comp.sys.mac.system

    nospam <nospam@nospam.invalid> asked
    OMG, does this ever stop. The problem was that they wanted iOS 15 for
    the iPhone 13, even though it wasn't tested and ready for prime time.

    false.

    That's like saying false when someone buys a new car, and in just the first
    10 months alone that car has 17 emergency safety defects requiring recalls.

    *Can you find _any_ other operating system with ~2 zero-day holes per month?* --
    CVE-2021-1782 (Kernel) - A malicious application may be able to elevate privileges
    CVE-2021-1870 (WebKit) - A remote attacker may be able to cause arbitrary code execution
    CVE-2021-1871 (WebKit) - A remote attacker may be able to cause arbitrary code execution
    CVE-2021-1879 (WebKit) - Processing maliciously crafted web content may lead to universal cross-site scripting
    CVE-2021-30657 (System Preferences) - A malicious application may bypass Gatekeeper checks
    CVE-2021-30661 (WebKit Storage) - Processing maliciously crafted web content may lead to arbitrary code execution
    CVE-2021-30663 (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution
    CVE-2021-30665 (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution
    CVE-2021-30666 (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution
    CVE-2021-30713 (TCC framework) - A malicious application may be able to bypass Privacy preferences
    CVE-2021-30761 (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution
    CVE-2021-30762 (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution
    CVE-2021-30807 (IOMobileFrameBuffer) - An application may be able to execute arbitrary code with kernel privileges
    CVE-2021-30858 (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution
    CVE-2021-30860 (CoreGraphics) - Processing a maliciously crafted PDF may lead to arbitrary code execution
    CVE-2021-30869 (XNU) - A malicious application may be able to execute arbitrary code with kernel privileges
    CVE-2021-30883 (WebContent) - A memory corruption in the app sandbox making for good LPE exploits in chains

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Alan Baker@21:1/5 to Robin Goodfellow on Tue Oct 12 10:26:53 2021
    XPost: misc.phone.mobile.iphone, comp.sys.mac.system

    On 2021-10-12 10:19 a.m., Robin Goodfellow wrote:
    nospam<nospam@nospam.invalid> asked
    OMG, does this ever stop. The problem was that they wanted iOS 15 for
    the iPhone 13, even though it wasn't tested and ready for prime time.
    false.
    That's like saying false when someone buys a new car, and in just the first 10 months alone that car has 17 emergency safety defects requiring recalls.

    *Can you find_any_ other operating system with ~2 zero-day holes per month?* -- CVE-2021-1782 (Kernel) - A malicious application may be able to
    elevate privileges CVE-2021-1870 (WebKit) - A remote attacker may be
    able to cause arbitrary code execution CVE-2021-1871 (WebKit) - A remote attacker may be able to cause arbitrary code execution CVE-2021-1879
    (WebKit) - Processing maliciously crafted web content may lead to
    universal cross-site scripting CVE-2021-30657 (System Preferences) - A malicious application may bypass Gatekeeper checks CVE-2021-30661
    (WebKit Storage) - Processing maliciously crafted web content may lead
    to arbitrary code execution CVE-2021-30663 (WebKit) - Processing
    maliciously crafted web content may lead to arbitrary code execution CVE-2021-30665 (WebKit) - Processing maliciously crafted web content may
    lead to arbitrary code execution CVE-2021-30666 (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution CVE-2021-30713 (TCC framework) - A malicious application may be able to bypass Privacy preferences CVE-2021-30761 (WebKit) - Processing
    maliciously crafted web content may lead to arbitrary code execution CVE-2021-30762 (WebKit) - Processing maliciously crafted web content may
    lead to arbitrary code execution CVE-2021-30807 (IOMobileFrameBuffer) -
    An application may be able to execute arbitrary code with kernel
    privileges CVE-2021-30858 (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution CVE-2021-30860
    (CoreGraphics) - Processing a maliciously crafted PDF may lead to
    arbitrary code execution CVE-2021-30869 (XNU) - A malicious application
    may be able to execute arbitrary code with kernel privileges
    CVE-2021-30883 (WebContent) - A memory corruption in the app sandbox
    making for good LPE exploits in chains

    <https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=android>

    "There are 6906 CVE Records that match your search."



    <https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=%22mac+os%22>

    "There are 3147 CVE Records that match your search.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Robin Goodfellow@21:1/5 to Joerg Lorenz on Wed Oct 13 00:11:28 2021
    XPost: misc.phone.mobile.iphone

    Joerg Lorenz <hugybear@gmx.ch> asked
    14.8 is still unchanged.

    You do realize, Joerg, that this exploited hole is _in_ iOS 14.8.

    Don't you?
    Oh. You don't.

    Why not?

    Oh, I see.
    It's because you're stupid.

    You apologists are ignorant of every basic fact about iOS there is.
    --
    REFERENCE:
    *Bindiff and POC for the IOMFB vulnerability, iOS 15.0.2* <https://saaramar.github.io/IOMFB_integer_overflow_poc/>
    "I tested 14.7.1 and 15.0 (but the bug is even older than that)."

    I've stopped being amazed at how incredibly ignorant apologists are.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)