Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.mobile.ipad > #77030
| From | Marion <marion@facts.com> |
|---|---|
| Newsgroups | misc.phone.mobile.iphone, comp.mobile.ipad, comp.sys.mac.system |
| Subject | Three zero-days within months - Apple is on a roll for zero-day bugs in 2025 |
| Date | 2025-05-24 01:58 +0000 |
| Organization | BWH Usenet Archive (https://usenet.blueworldhosting.com) |
| Message-ID | <100r94g$1kd2$1@nnrp.usenet.blueworldhosting.com> (permalink) |
Cross-posted to 3 groups.
*Three zero-days within months!* <https://www.csoonline.com/article/3843999/apple-patches-zero-day-bugs-used-in-targeted-iphone-attacks.html> The company suffered a total of twenty zero-day holes in 2023, including the actively exploited RCE bugs, CVE-2023-32434 and CVE-2023-32435. In 2024, Apple fixed six zero-day bugs, along with a string of critical flaws including CVE-2024-23225 and CVE-2024-23296 which together allowed attackers to bypass kernel memory protection. This marks Apple's third zero-day fix since the start of the year, following patches for CVE-2025-24085 in January and CVE-2025-24200 in February. Surprise! While Android has *never* had a Pegasus kernel exploit, iOS constantly has them, in addition to the termite-ridden WebKit abomination. Patches were released on Tuesday and are available through the latest versions of iOS, iPadOS, macOS, Safari, and visionOS. Apple never tests their software sufficiently which is perhaps the main reason why iOS is the most exploited mobile operating system in history.
Back to comp.mobile.ipad | Previous | Next — Next in thread | Find similar | Unroll thread
Three zero-days within months - Apple is on a roll for zero-day bugs in 2025 Marion <marion@facts.com> - 2025-05-24 01:58 +0000 Re: Three zero-days within months - Apple is on a roll for zero-day bugs in 2025 Alan <nuh-uh@nope.com> - 2025-05-26 18:14 -0700
csiph-web