Google to Unveil macOS Vulnerability

It is associated with the implementation of a copy-on-write mechanism in the system
05 March 2019   1053

Specialists at Google Project Zero found a vulnerability in the macOS kernel. It is associated with the implementation of a copy-on-write mechanism in the system, used for operating with copies of memory. An attacker can change files in a mounted macOS file system image without the file system warning and get the execution of malicious code.

This copy-on-write behavior works not only with anonymous memory, but also with file mappings. This means that, after the destination process has started reading from the transferred memory area, memory pressure can cause the pages holding the transferred memory to be evicted from the page cache. Later, when the evicted pages are needed again, they can be reloaded from the backing filesystem.
 

Google Project Zero team

The Google Project Zero team reported to Apple about their discovery back in November last year, but for 90 days the company failed to solve the problem, so the experts published information and the PoC-code exploit.

Oracle Solaris 11.4 SRU15 to be Released

Support Repository Update contains a lot of different updates, for example, new moduls for Python 3.7 as well as Explorer
20 November 2019   97

The Solaris 11.4 SRU 15 (Support Repository Update) operating system update has been published, which offers a series of regular fixes and improvements for the Solaris 11.4 branch. To install the fixes proposed in the update, just run the 'pkg update' command.

These are main updates and changes:

  • Explorer 19.4 is now available
  • New modules for python 3.7:
    • pybonjour
    • pygobject3
  • Inclusion of cbindgen 0.8.7 into Oracle Solaris 11.4
  • Added support for Python 3.7 to RAD
  • Add page retire kstats that counts retired pages and their type of usage
  • zlogin authorization for console access only
  • Updates to:
    • net-snmp has been updated to 5.8
    • ruby 2.5 has been updated to 2.5.5
    • ruby 2.6 has been updated to 2.6.3
    • GCC has been updated to 9.2
    • cmake has been updated to 3.15.2
    • nmap has been updated to 7.80

Get more info at the official blog.