Updated:11:11 AM EDT Mar 18


this is ggmania.com subsite Google reveals "high severity" flaw in macOS kernel - TechAmok

TOP STORIES

HEADLINES

28 SIMPLE HACKS THAT WILL CHANGE YOUR LIFE
Jessica Alba Is A Bad Girl
Apple MacBook Pro 2018 Appears to Have a Serious Design Flaw
Cache, from History to the Future of CPU Memory
When You Think You Are Fast And This Happens...
The Factory Flawed Air Jordans Worth $143,000
BEST NEWS BLOOPERS JANUARY 2019
Why Everyone is Going to Iceland Lately
27 EASY MAGIC TRICKS
15-inch, 4K OLED laptops are coming
Yes, Batteries Are Our Future. Here's Why.
25 BEST HACKS FOR YOUR SMARTPHONE
2018 Was the Year of VR Headsets - Except it Wasn't :-)
20 Things Proving That Japan Lives In 3018
10 funny moments in Granny The Horror Game
The best pics on the Internet #263
Emira Kowalska aka EmiraFoods Huge Booty & More Spicy Pics
23 BRILLIANT PHONE HACKS

Apple announces new iPad Air and iPad mini with A12 Bionic, Pencil
Pouring Lava Over Dry Ice
DroneClash Recap 2019
What Happens When You Water Cool an Air Cooler?
Crytek demos realtime raytracing with Cryengine
The Chemical Brothers - We've Got To Try
Get GRID 2 for free
AMD Releases Radeon Adrenalin Edition 19.3.2 Drivers
First Beta of Android Q Available to Developers
Beat Saber Sells over 1 Million Copies
Avengers: Endgame Trailer #2 (2019)
President Trump says US grounding Boeing 737 Max 8s, 9s
Windows 7 Gets DirectX 12 Support
Windows 10 patch addresses the graphics & mouse performance
Firefox Send Is a Free File Transfer Service Featuring Encryption
The Web's Creator Comments on Its Future
Intel Teases Its New Intel Graphics UI
Passively Cooling the Intel i9-9900K

Google reveals "high severity" flaw in macOS kernel - [security]
11:17 AM EST - Mar,03 2019 - post a comment

A security researcher from Google's Project Zero has discovered that even though macOS' kernel, XNU, allows copy-on-write (COW) behavior in some cases, it is essential that any copied memory is not available for modifications from the source process. While COW is a resource-management technique that is not inherently flawed, it appears that Apple's implementation of it certainly is.

Project Zero has found out that if a user-owned mounted filesystem image is modified, the virtual management subsystem is not informed of the changes, which means that an attacker can potentially take malicious actions without the mounted filesystem knowing about it. The detailed explanation can be found below:

This copy-on-write behavior works not only with anonymous memory, but also with file mappings. This means that, after the destination process has started reading from the transferred memory area, memory pressure can cause the pages holding the transferred memory to be evicted from the page cache. Later, when the evicted pages are needed again, they can be reloaded from the backing filesystem.

This means that if an attacker can mutate an on-disk file without informing the virtual management subsystem, this is a security bug. MacOS permits normal users to mount filesystem images. When a mounted filesystem image is mutated directly (e.g. by calling pwrite() on the filesystem image), this information is not propagated into the mounted filesystem.
The researcher informed Apple about the flaw back in November 2018, but the company is yet to fix it even after exceeding the 90-day deadline, which is why the bug is now being made public with a "high severity" label. That said, Apple has accepted the problem and is working with Project Zero on a patch for a future macOS release. You can also view the proof-of-concept code that demonstrates the problem on the dedicated webpage here.

Short overview of recent news articles

Mar,11 2019 NVIDIA Ceases Support for 3DVision, Mobile Kepler
Mar,11 2019 How PC Case Fans Are Made
Mar,11 2019 Doom: Annihilation Gets a Trailer
Mar,11 2019 Adobe to Kill Shockwave in April
Mar,10 2019 Bird Gets Swallowed by Glory Hole in Northern California
Mar,10 2019 Tetris on the Guitendo (99999 MAX OUT score + level 39 WR)
Mar,10 2019 Hellboy (2019 Movie) Official TV Spot 'Never Fear'
Mar,10 2019 BRIGHTBURN - Official Trailer #2
Mar,10 2019 Game of Thrones - Season 8 - Official Trailer
Mar,09 2019 AdoredTV Reveals New AMD Leaks and Social Media Woes
Mar,08 2019 Galaxy S10 Comes With Spotify Premium Free for Six Months
Mar,08 2019 Sony Brings PS4 Remote Play to iOS
Mar,08 2019 Kara Del Toro Is Amazing
Mar,08 2019 Windows 0-day is being actively exploited in the wild
Mar,08 2019 The PC Perspective Podcast Is Live
Mar,07 2019 Windows 10 KB4482887 update can degrade graphics
Mar,07 2019 Highlights of the Microsoft HoloLens 2 Presentation
Mar,06 2019 AMD Radeon Software Adrenalin 2019 Edition 19.3.1 Driver
Mar,05 2019 Nvidia 419.35 WHQL driver optimizes Apex Legends
Mar,05 2019 New Security Vulnerability Found Affecting Intel CPUs
Mar,05 2019 Rachel Cook Could Be The Next Queen Of Instagram
Mar,05 2019 Password-Free, Secure Login Standard Finalized
Mar,05 2019 AMD Showcases Ryzen V1000 and EPYC 3000
Mar,04 2019 Apex Legends Has Surpassed 50 Million Players
Mar,04 2019 Keith Flint: Prodigy vocalist dies aged 49
>> News Archive <<

TechAmok - Privacy Policy        loading time:0.03secs