Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

Polymer physicists are into chains.


computers / comp.sys.mac.system / Apple emits macOS, iOS, iPadOS patches for 'exploited' security bugs

SubjectAuthor
o Apple emits macOS, iOS, iPadOS patches for 'exploited' security bugsNewsKrawler

1
Apple emits macOS, iOS, iPadOS patches for 'exploited' security bugs

<t25q6r$2pgfi$1@paganini.bofh.team>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=14195&group=comp.sys.mac.system#14195

 copy link   Newsgroups: comp.sys.mac.system
Path: i2pn2.org!i2pn.org!paganini.bofh.team!not-for-mail
From: newskr...@krawl.org (NewsKrawler)
Newsgroups: comp.sys.mac.system
Subject: Apple emits macOS, iOS, iPadOS patches for 'exploited' security bugs
Date: Fri, 1 Apr 2022 03:06:04 -0000 (UTC)
Organization: To protect and to server
Message-ID: <t25q6r$2pgfi$1@paganini.bofh.team>
Injection-Date: Fri, 1 Apr 2022 03:06:04 -0000 (UTC)
Injection-Info: paganini.bofh.team; logging-data="2933234"; posting-host="5IFKlfXIIF692ushLKoxOA.user.paganini.bofh.team"; mail-complaints-to="usenet@bofh.team";
X-Notice: Filtered by postfilter v. 0.9.1
 by: NewsKrawler - Fri, 1 Apr 2022 03:06 UTC

https://www.theregister.com/2022/03/31/apple_emergency_patches/
Apple emits macOS, iOS, iPadOS patches for 'exploited' security bugs

Apple issued macOS Monterey 12.3.1; iOS 15.4.1 and iPadOS 15.4.1; tvOS
15.4.1; and watchOS 8.5.1 to address zero-day vulnerabilities.

The Monterey release closes CVE-2022-22675, an out-of-bounds write flaw
reported by an anonymous researcher in the driver-level AppleAVD audio-video
decoder. This can be abused by an application to run code at the kernel
level, meaning a rogue app or user can gain powerful privileges and
completely take over the machine.

Apple said it is aware this issue is actively exploited."
The bug was fixed by applying improved memory bounds checking.

The Monterey update also patches CVE-2022-22674, an out-of-bounds read flaw
again reported by an unnamed researcher in the OS's Intel graphics driver.

Again, Apple said it is aware this flaw has been actively exploited.

Users should apply these updates as soon as they can if they've not already
been automatically installed. The macOS vulnerabilities are present in at
least Macs running Monterey.

1
server_pubkey.txt

rocksolid light 0.9.7
clearnet tor