※ 引述《SteChang (SteChang)》之銘言:
: https://i.imgur.com/IBbv8Ye.jpg
: 一個禮拜之後又光速更新了14.5.1
: 聽說是修正APP追蹤控制的問題
https://flip.it/IpyLQm
修兩個嚴重的bug
Apple detailed the web flaws that were fixed. The first flaw meant that “Proc
essing maliciously crafted web content may lead to arbitrary code execution.”
Memory corruption was at play here and Apple says it fixed the issue with “i
mproved state management.”
第一個是去惡意網站可能會讓對方在妳的手機任意執行任何程式碼
蘋果藉由改善狀態管理來修正問題
A second flaw also dealt with the same potential for malicious web content pot
entially executing arbitrary code and Apple says it also may have been exploit
ed in the wild. On this one, Apple solved the problem with an integer overflow
and “improved input validation.”
這個bug 也會導致網站任意執行任何程式碼,且可能被利用了
蘋果利用整數溢位和改進輸入認證來解決問題
Bug 已經被利用了
大家快更新吧
不然可能會變得像華航事件一樣