Rocksolid Light

Welcome to Rocksolid Light

mail  files  register  newsreader  groups  login

Message-ID:  

You will have a head crash on your private pack.

computers / comp.mobile.ipad / Yet again iPhone hardware is full of holes (aka Apple is incompetent at IC design)

SubjectAuthor
* Yet again iPhone hardware is full of holes (aka Apple is incompetent at IC desigWally J
`- Yet again iPhone hardware is full of holes (aka Apple isAlan

1
Yet again iPhone hardware is full of holes (aka Apple is incompetent at IC design)

<umibpu$1t9i5$1@paganini.bofh.team>

  copy mid

https://news.novabbs.org/computers/article-flat.php?id=3702&group=comp.mobile.ipad#3702

  copy link   Newsgroups: misc.phone.mobile.iphone comp.mobile.ipad comp.sys.mac.advocacy
Path: i2pn2.org!i2pn.org!paganini.bofh.team!not-for-mail
From: walterjones@invalid.nospam (Wally J)
Newsgroups: misc.phone.mobile.iphone,comp.mobile.ipad,comp.sys.mac.advocacy
Subject: Yet again iPhone hardware is full of holes (aka Apple is incompetent at IC design)
Date: Wed, 27 Dec 2023 19:25:50 -0400
Organization: To protect and to server
Message-ID: <umibpu$1t9i5$1@paganini.bofh.team>
Injection-Date: Wed, 27 Dec 2023 23:25:51 -0000 (UTC)
Injection-Info: paganini.bofh.team; logging-data="2008645"; posting-host="vIdaFOKql7PmGPz/TS/dWw.user.paganini.bofh.team"; mail-complaints-to="usenet@bofh.team"; posting-account="9dIQLXBM7WM9KzA+yjdR4A";
Cancel-Lock: sha256:4GHFfRpdacc/5DjVMCFQPZZmMYU9xoz30llrFunsrS4=
X-Notice: Filtered by postfilter v. 0.9.3
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.5512
X-Newsreader: Microsoft Outlook Express 6.00.2900.5512
X-Priority: 3
X-MSMail-Priority: Normal
 by: Wally J - Wed, 27 Dec 2023 23:25 UTC

I'm shocked. Shocked I say. Shocked.
Apple hardware. Full of holes? How could this happen?

https://securitybrief.asia/story/operation-triangulation-undocumented-iphone-hardware-feature-exposed
"A vulnerability was identified in Apple's System on a Chip (SoC),
facilitating recent iPhone attacks known as Operation Triangulation.
This vulnerability, located within the hardware itself, permitted
attackers to bypass Apple's hardware-based memory protection on
iPhones running iOS versions up to 16.6. This action allowed attackers
to gain full control over the device." CVE-2023-38606

Too bad Apple only fully patches one release (and, no... it's not iOS 16).
--
Apple iPhones have three times the security holes & ten times the exploits!

Re: Yet again iPhone hardware is full of holes (aka Apple is incompetent at IC design)

<umid1q$3d64$1@dont-email.me>

  copy mid

https://news.novabbs.org/computers/article-flat.php?id=3703&group=comp.mobile.ipad#3703

  copy link   Newsgroups: misc.phone.mobile.iphone comp.mobile.ipad comp.sys.mac.advocacy
Path: i2pn2.org!i2pn.org!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail
From: nuh-uh@nope.com (Alan)
Newsgroups: misc.phone.mobile.iphone,comp.mobile.ipad,comp.sys.mac.advocacy
Subject: Re: Yet again iPhone hardware is full of holes (aka Apple is
incompetent at IC design)
Date: Wed, 27 Dec 2023 15:47:04 -0800
Organization: A noiseless patient Spider
Lines: 34
Message-ID: <umid1q$3d64$1@dont-email.me>
References: <umibpu$1t9i5$1@paganini.bofh.team>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Wed, 27 Dec 2023 23:47:06 -0000 (UTC)
Injection-Info: dont-email.me; posting-host="2bd6875aacc28a80815e9cbe08a8e83b";
logging-data="111812"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1/0KPIysKhjQxdrQ0RUe1KtHb6Esc4GhX4="
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha1:9N45QTiuSEus3ZBsHDmdv4yv1II=
Content-Language: en-CA
In-Reply-To: <umibpu$1t9i5$1@paganini.bofh.team>
 by: Alan - Wed, 27 Dec 2023 23:47 UTC

On 2023-12-27 15:25, Wally J wrote:
> I'm shocked. Shocked I say. Shocked.

Shocked that you were wrong about Apple not actually designing silicon?

> Apple hardware. Full of holes? How could this happen?
>
> https://securitybrief.asia/story/operation-triangulation-undocumented-iphone-hardware-feature-exposed
> "A vulnerability was identified in Apple's System on a Chip (SoC),
> facilitating recent iPhone attacks known as Operation Triangulation.
> This vulnerability, located within the hardware itself, permitted
> attackers to bypass Apple's hardware-based memory protection on
> iPhones running iOS versions up to 16.6. This action allowed attackers
> to gain full control over the device." CVE-2023-38606

Not the full story...

....as always.

>
> Too bad Apple only fully patches one release (and, no... it's not iOS 16).

You have no evidence that Apple won't patch this.

Oh, wait! They already did:

'This issue was addressed with improved state management. This issue is
fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6
and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5,
watchOS 9.6. An app may be able to modify sensitive kernel state. Apple
is aware of a report that this issue may have been actively exploited
against versions of iOS released before iOS 15.7.1.'

<https://nvd.nist.gov/vuln/detail/CVE-2023-38606>

1
server_pubkey.txt

rocksolid light 0.9.81
clearnet tor