Apple has credited the PanguTeam with discovering three security vulnerabilities in iOS 8.
Apple posted a support document detailing the security content of iOS 8.1.1. In that document, PanguTeam is credited for finding a Dyld, Kernel, and Sandbox Profile vulnerability.
Dyld
● Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later
● Impact: A local user may be able to execute unsigned code
● Description: A state management issue existed in the handling of Mach-O executable files with overlapping segments. This issue was addressed through improved validation of segment sizes.
● CVE-ID: CVE-2014-4455 : @PanguTeam
More at iHash.eu
Tuesday, November 18, 2014
Apple Credits PanguTeam With Discovering Three Security Vulnerabilities in iOS 8
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment