home bbs files messages ]

Forums before death by AOL, social media and spammers... "We can't have nice things"

   comp.mobile.ipad      Discussion about the Apple Ipad      72,997 messages   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]

   Message 72,329 of 72,997   
   Chris to Peter   
   Re: Almost every iOS & macOS app has had   
   03 Jul 24 07:11:48   
   
   XPost: uk.telecom.mobile, misc.phone.mobile.iphone, comp.sys.mac.system   
   From: ithinkiam@gmail.com   
      
   Peter  wrote:   
   > A near inconceivable number of Apple iPhone & macOS apps have been exposed   
   > to critical vulnerabilities in a popular dependency manager for over 10   
   > Years such that over three million CocoaPods-built iOS and macOS apps have   
   > been vulnerable for over a decade, unbeknownst to Apple & its test teams.   
      
   This is very concerning, however the bit you omitted is that these   
   vulnerabilities were patched late last year.   
      
   The most important thing people can do is keep their apps and iOS up to   
   date. And maybe reconsider using apps that haven't been updated since   
   October 2023.   
      
   It's also worth mentioning that this was a vulnerability explicitly   
   possible because of the open source model. Had CocoaPods not been available   
   on github it would have been possible to exploit as easily or at all.   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]


(c) 1994,  bbs@darkrealms.ca