This article has been indexed from Softpedia News / Security
Apple fixed a zero-day vulnerability in its macOS, iOS, and iPadOS operating systems on Monday, less than a week after releasing a set of updates that addressed more than 36 other vulnerabilities in total, according to The Register.
IOMobileFrameBuffer code, a kernel extension for the screen frame buffer management, was found to include a vulnerability, classified as CVE-2021-30807, that can be exploited to execute malicious code on the afflicted device.
The vulnerability is attributed to an unidentified researcher and was fixed by an undisclosed, but reportedly better memory handling code.
Apple notes on its advisory “An application may be able to execute arbitrary code with kernel privileges,” [….
Read the original article: Apple Patches Zero-Day Vulnerability in macOS, iOS, and iPadOS