all InfoSec news
CVE-2021-1782, an iOS in-the-wild vulnerability in vouchers
April 14, 2022, 3:58 p.m. | noreply@blogger.com (Ryan)
Project Zero googleprojectzero.blogspot.com
Posted by Ian Beer, Google Project Zero
This blog post is my analysis of a vulnerability exploited in the wild and patched in early 2021. Like the writeup published last week looking at an ASN.1 parser bug, this blog post is based on the notes I took as I was analyzing the patch and trying to understand the XNU vouchers subsystem. I hope that this writeup serves as the missing documentation for how some of the internals of the voucher …
More from googleprojectzero.blogspot.com / Project Zero
First handset with MTE on the market
6 months, 1 week ago |
googleprojectzero.blogspot.com
Analyzing a Modern In-the-wild Android Exploit
7 months, 3 weeks ago |
googleprojectzero.blogspot.com
Summary: MTE As Implemented
9 months, 1 week ago |
googleprojectzero.blogspot.com
MTE As Implemented, Part 1: Implementation Testing
9 months, 1 week ago |
googleprojectzero.blogspot.com
MTE As Implemented, Part 3: The Kernel
9 months, 1 week ago |
googleprojectzero.blogspot.com
MTE As Implemented, Part 2: Mitigation Case Studies
9 months, 1 week ago |
googleprojectzero.blogspot.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Sr. Application Security Engineer
@ CyberCube | Tallinn
Security Incident Response Analyst
@ Oracle | KITCHENER, ON, Canada
Senior Security Engineer
@ Minitab | Americas Remote