https://support.apple.com/en-us/HT213913
--
"You, O God, do see trouble and grief; you consider it to take it in hand. The victim commits himself to you; you are the helper of the fatherless." --Psalm 10:14. 9/11's 22nd yr. anniversary with a bad ovanite Z & mawny due 2 leaks, salivas, coughs, aches, tiredness, sickness, etc. :( Finally, Disney & Charter!
Note: A fixed width font (Courier, Monospace, etc.) is required to see this signature correctly.
/\___/\ Ant(Dude) @ http://aqfl.net & http://antfarm.home.dhs.org.
/ /\ /\ \ Please nuke ANT if replying by e-mail.
| |o o| |
\ _ /
( )

Ant <ant@zimage.comANT> wrote

> https://support.apple.com/en-us/HT213913

Holy Shit. Apple coders are morons!

Despite the ignorant uneducated low-IQ iKook Alan Browne claiming
"zero-click" holes can't exist in iOS, this is another no-click exploit.
CVE-2023-41064 and CVE-2023-41061

All the attacker has to do is send a single image to your iMessage acct.
That's it.

One image.
And you don't even need to know it's there.

*That's how atrocious Apple's coding is - that zero-click holes abound*

There's a reason iOS has more than twice to three times as many zero-day
bugs as Android and more than ten times the exploits in the wild.

Did you look at that zero-day holes (which Apple did NOT find!)?
(Yes. Holes. Plural. The same bug in two different places!)

*Jesus Christ Apple! Who does your coding? High school dropouts?*

VE-2023-41064 is related to a buffer overflow issue in ImageIO where
processing a maliciously crafted image results in arbitrary code execution.

The same result was noted for Wallet in CVE-2023-41061 due to a maliciously
crafted attachment.

*It's classic Apple incompetent coding - ridiculously sophomoric*

Description:
A buffer overflow issue was addressed with improved memory handling.
CVE-2023-41064: The Citizen Lab at The University of Torontoʼs Munk School
"Apple dealt with a validation issue with improved logic"

In other words, the sophomores in high school who do Apple's coding added a
check for a buffer overflow in two separate pieces of Apple code.

Not only is Apple incompetent in chip design - they're morons in coding.
--
It's shocking how atrocious Apple products are, where the ikooks think it's
normal to have the most zero day holes & exploited vulnerabilities.

On 2023-09-11 18:28, Wally J wrote:
> Ant <ant@zimage.comANT> wrote
>
>> https://support.apple.com/en-us/HT213913
>
> Holy Shit. Apple coders are morons!
>
> Despite the ignorant uneducated low-IQ iKook Alan Browne claiming
> "zero-click" holes can't exist in iOS, this is another no-click exploit.
> CVE-2023-41064 and CVE-2023-41061
>
> All the attacker has to do is send a single image to your iMessage acct.
> That's it.
>
> One image.
> And you don't even need to know it's there.
>
> *That's how atrocious Apple's coding is - that zero-click holes abound*
>
> There's a reason iOS has more than twice to three times as many zero-day
> bugs as Android and more than ten times the exploits in the wild.
>
> Did you look at that zero-day holes (which Apple did NOT find!)?
> (Yes. Holes. Plural. The same bug in two different places!)
>
> *Jesus Christ Apple! Who does your coding? High school dropouts?*
>
> VE-2023-41064 is related to a buffer overflow issue in ImageIO where
> processing a maliciously crafted image results in arbitrary code execution.
>
> The same result was noted for Wallet in CVE-2023-41061 due to a maliciously
> crafted attachment.
>
> *It's classic Apple incompetent coding - ridiculously sophomoric*
>
> Description:
> A buffer overflow issue was addressed with improved memory handling.
> CVE-2023-41064: The Citizen Lab at The University of Torontoʼs Munk School
> "Apple dealt with a validation issue with improved logic"
>
> In other words, the sophomores in high school who do Apple's coding added a
> check for a buffer overflow in two separate pieces of Apple code.
>
> Not only is Apple incompetent in chip design - they're morons in coding.

People make mistakes, Arlen.

People in companies all around the world.

But you only care when it's Apple.

Ant <ant@zimage.comANT> wrote:
> https://support.apple.com/en-us/HT213913

Updated my old 7+.

On 2023-09-14 18:23, *Hemidactylus* wrote:
> Ant <ant@zimage.comANT> wrote:
>> https://support.apple.com/en-us/HT213913
>
> Updated my old 7+.
>

Can't be.

We've been told that Apple doesn't update older OSes.

😜

*Hemidactylus* <ecphoric@allspamis.invalid> wrote

>> https://support.apple.com/en-us/HT213913
>
> Updated my old 7+.

There is no operating system with a shorter support cycle than iOS!

What never fails is the iKooks are oblivious of details in facts.
<https://support.apple.com/en-ca/guide/deployment/depc4c80847a>

The main reason the iPHone has between two and three times the zero-click
zero-day bugs and over ten times the exploits in the wild is that iOS has
the _shortest_ full-release support cycle in the industry - bar none.

FACT:
The instant iOS 17 ships, every iPhone that can't update to it will
*immediately lose full hotfix support!*

Why?

Because unlike _every_ other common operating system supplier,
*Apple only fully supports a single release*

FACTS:
<https://screenrant.com/apple-product-security-update-lifespan/>
<https://hothardware.com/news/apple-admits-only-fully-patches-security-flaws-in-latest-os-releases>
<https://arstechnica.com/gadgets/2022/10/apple-clarifies-security-update-policy-only-the-latest-oses-are-fully-patched/>

And that's only the full hotfix support (whyich is 1/10th of an OS).

The rest of the operating system support (e.g., drivers & default apps)
also dies the instant iOS 17 is released. Apple support is primitive.

*No other consumer operating system uses this primitive support method!*
--
I'm on these child-like Apple newsgroups to inform these ignorant
uneducated iKooks that everything they believe about Apple is wrong.