Just for the people that like to know the specifics, the vulnerability was a possible double free in the exit method of IORegistryIterator, which was originally found by Ian Beer of the Google Zero team.
It was a pretty nasty bug, since it could be triggered in any sandbox, because those registry APIs weren't protected by MAC hooks.
Apple patched this bug in iOS 9.2
For the people that wanna know more, check this link: http://bit.ly/1UY5I2z
Thanks to @qwertyoruiop for the confirmation.
">View Post Link Belowby /u/RowRocka - Link to original post
No comments:
Post a Comment