Quite strange indeed, given that was one of the main points on their security conference a few months ago.
replyI can only imagine that
reply1. it’s to performance sensitive
Or
2. The os is so darn large it’s hard to recompile everything
I worked at Apple for a long time. The OS gets fully recompiled regularly.
replyA simultaneous total world build is relatively rare (is that needed here?), but it does happen. Sometimes new compiler versions or features need this.
Hm that leaves more questions for me. Why does this path not have bounds checking, is think perhaps a limit of the clang flag or is it more simply a mistake of omission on apples part. Either way it seems like a bad look. I wish we’d get a post mortem
replyI dunno if that's sensitive information, but how long did a build usually take?
replycould be a different type of data only attack, which doesnt override the boundaries
replyWell it’s memory corruption so I think it’s pretty safe to assume it’s a bounds issue. I’m not sure if it’s possible to get this with something like type confusion tho I could be wrong here.
reply