Apple has released a patch for a WebKit zero-day affecting iOS, iPadOS, macOS, and Safari that may have been actively exploited. The flaw is a use after free issue that could be triggered by processing maliciously crafted web content, leading to arbitrary code execution. This vulnerability was reported to Apple by an anonymous researcher and was addressed by the company by improving the memory agent. This is the third critical zero-day that has been addressed by the company this year, all being accompanied with a security patch.
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is