{"id":261927,"date":"2021-05-29T00:17:09","date_gmt":"2021-05-28T21:17:09","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/despite-fix-apple-has-yet-to-address-webkit-security-bug-affecting-iphone-and-macos\/"},"modified":"2021-05-29T00:17:09","modified_gmt":"2021-05-28T21:17:09","slug":"despite-fix-apple-has-yet-to-address-webkit-security-bug-affecting-iphone-and-macos","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/despite-fix-apple-has-yet-to-address-webkit-security-bug-affecting-iphone-and-macos\/","title":{"rendered":"#Despite fix, Apple has yet to address WebKit security bug affecting iPhone and MacOS"},"content":{"rendered":"

#Despite fix, App<\/a>le has yet to address WebKit security bug affecting iPhone and MacOS<\/strong>”<\/p>\n

\n
\n
\n
\"Despite
\n Apple logo. Credit: Unsplash.com
\n <\/figcaption><\/figure>\n<\/div>\n<\/div>\n

While a fix emerged three weeks ago for the WebKit security bug affecting Apple products such as iPhone and Mac, Apple has yet to implement the fix. Researchers at the security firm Theori have found that WebKit mainly causes Safari to crash. However, following a re-check after the supplied fix, they discovered that the bug still remains on both iOS and MacOS.<\/p>\n

“Patch-gapping” is the term for the time period between when a fix becomes available and the application of that fix to affected systems and products. In this case, Theori cautions Apple about waiting too long to make use of the fix for WebKit, lest attackers have more time and opportunity to compromise impacted systems. <\/p>\n

This vulnerability arose from WebKit which is a confusion bug taking advantage of AudioWorklet, the interface allowing developers to alter, control, render and play audio with the lowest possible latency. Unfortunately, attackers can exploit the WebKit bug to remotely execute evil code on affected devices. <\/p>\n

That said, attackers using WebKit would still have to circumvent Pointer Authentication Codes (PAC), an exploit mitigation system wherein users must input the correct cryptographic signature before code can be rendered in memory. That means that in the absence of either this signature or some kind of a bypass, attackers will fortunately not be able to run their malicious code.<\/p>\n

Researchers have confirmed that this exploit builds arbitrary read\/write primitives which attackers could use to build a chain of further exploits. Moreover, they stated that PAC bypass methods count as a distinct issue that should be disclosed separately. <\/p>\n

Thus far, WebKit has appeared in six of the eight Apple exploits already uncovered in 2021 alone.\n <\/p>\n\n

\n

Apple reveals two iOS zero-day vulnerabilities that allow attackers to access fully patched devices\n <\/p><\/div>\n

\n
\n More information:<\/strong>
\n blog.theori.io\/research\/webkit-type-confusion\/<\/a><\/p><\/div>\n

\n \u00a9 2021 Science<\/a> X Network<\/p>\n

<\/p>\n

\n

Citation<\/strong>:
\n Despite fix, Apple has yet to address WebKit security bug affecting iPhone and MacOS (2021, May 28)
\n retrieved 28 May 2021
\n from https:\/\/techxplore.com\/news<\/a>\/2021-05-apple-webkit-bug-affecting-iphone.html<\/p>\n

This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no
\n part may be reproduced without the written permission. The content is provided for information purposes only.<\/p><\/div>\n<\/p><\/div>\n