※ 引述《SteChang (SteChang)》之铭言:
: https://i.imgur.com/IBbv8Ye.jpg
: 一个礼拜之后又光速更新了14.5.1
: 听说是修正APP追踪控制的问题
https://flip.it/IpyLQm
修两个严重的bug
Apple detailed the web flaws that were fixed. The first flaw meant that “Proc
essing maliciously crafted web content may lead to arbitrary code execution.”
Memory corruption was at play here and Apple says it fixed the issue with “i
mproved state management.”
第一个是去恶意网站可能会让对方在妳的手机任意执行任何程式码
苹果借由改善状态管理来修正问题
A second flaw also dealt with the same potential for malicious web content pot
entially executing arbitrary code and Apple says it also may have been exploit
ed in the wild. On this one, Apple solved the problem with an integer overflow
and “improved input validation.”
这个bug 也会导致网站任意执行任何程式码,且可能被利用了
苹果利用整数溢位和改进输入认证来解决问题
Bug 已经被利用了
大家快更新吧
不然可能会变得像华航事件一样