Google Project Zero reveals High Severity flaw in macOS kernel, working with Apple on a patch

SHARE:

Highlights: Google’s Project Zero has revealed a flaw in the macOS. The flaw is called BuggyCow. Apple is working with Project Zero on a f...

Highlights: Google’s Project Zero has revealed a flaw in the macOS. The flaw is called BuggyCow. Apple is working with Project Zero on a fix for the bug.   Google’s Project Zero team has publicly disclosed a “high severity” flaw in the macOS kernel. Apple was made aware of the flaw back in November 2018. Google’s Project Zero team has a 90-days disclosure policy. Even if the company (Apple in this case) hasn’t issued a fix for the problem, Project Zero will publicly reveal the security vulnerability. There are special cases where a grace period is allowed. In the case of the macOS, the flaw is called BuggyCow. According to 9to5 Google, “security researchers have discovered that if a modification is made to a user-owned mounted filesystem image, the virtual management system isn’t notified of those changes. Thus, an attacker can potentially be granted access to perform malicious actions on that mounted filesystem without the end user ever knowing about it until it’s too late.” On the other hand, Wired notes that the for the vulnerability to be exploited, the victim needs to have some kind of malware present on his/her computer. Apple has reportedly acknowledged the BuggyCow flaw and is working with Google's Project Zero on a fix for the same. However, there is no timeline available as to when the fix will be made available to consumers.  Thomas Reed, a Mac focussed researcher at security firm MalwareBytes told Wired, "They've (Apple) had a lot of very-high-profile security-related bugs and some have been really, really stupid. It makes you wonder what’s going on with the QA process at Apple. Are they adequately testing? Lately, it seems like they’re not."  Apple’s iOS and Macs were affected with a FaceTime bug last month. The bug allowed users to initiate a group FaceTime call to eavesdrop. The bug was found by a 14-year-old who wanted to chat with his friends while playing Fortnite. You can read more about the FaceTime bug here. Also read: Password exposing macOS bug found by German teenage hacker who refuses to disclose details to Apple Researchers discover a new 'Spoiler' flaw in Intel CPU's

from Latest Technology News https://www.digit.in/security-software/google-project-zero-reveals-high-severity-flaw-in-macos-kernel-working-with-apple-on-a-patch-46818.html
via IFTTT

COMMENTS

Name

7,1,Airtel,1,Andriod,1,Android,4,Android Q,1,apex,1,Apple,7,Apps,1,Asus Rog,1,Black Shark 2,2,Boeing 737 MAX,1,Bsnl,2,camera,2,CPU,3,Donald Trump,1,Earphone,1,Facebook,5,Fan,1,Fitbit,1,foldable Phone,2,Fortnite,1,Galaxy A40,1,Galaxy s10,1,Galaxy s10e,1,Games,10,gaming,1,Google,6,Google Pixel 2,1,Honor 10i,1,Huawe,1,Huawei,6,Huawei GT,1,IBM,1,Instagram,2,Internet,2,ios,2,iPad,2,iphone,2,Israel,1,jiomart,1,Laptop,1,Leica Q2,1,M20,1,mac,1,MacOS,1,Mi 9,1,Mi A2,1,Mi LED TV,1,MicroSoft,3,mobile,1,Moon,2,Mozilla,1,Nasa,2,News,1,Nokia,4,Nokia 62,1,Nvidias,1,OnePlus,4,Oppo,5,P30,3,Pixel,1,Poco F1,1,Pubg,12,Qualcomm,2,Redmi 3,1,Redmi 6 Pro,1,Redmi 7,1,Redmi Note 7,1,reliance,1,Reno,1,samsung,11,Skype,1,SmartPhone,56,Social,5,Spotify,1,Tech,35,Telecom,3,Touchpad,1,Tournament,1,TV,1,Twitter,1,Vivo,2,Watch,2,WhatsApp,1,Xbox,1,Xiaomi,16,y9li,1,
ltr
item
Genius Baba: Google Project Zero reveals High Severity flaw in macOS kernel, working with Apple on a patch
Google Project Zero reveals High Severity flaw in macOS kernel, working with Apple on a patch
https://static.digit.in/default/3d21569a2fd3bda8451fbdd59553761649154cc4.jpeg
Genius Baba
https://geniusbabaa.blogspot.com/2019/03/google-project-zero-reveals-high.html
https://geniusbabaa.blogspot.com/
https://geniusbabaa.blogspot.com/
https://geniusbabaa.blogspot.com/2019/03/google-project-zero-reveals-high.html
true
7104319406113350277
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share. STEP 2: Click the link you shared to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy