Vincenzo Ronca
07/02/2021 ore 23:52
There is no positive news for users macOS. According to the latest news leaked on the net, even the most recent version of the Cupertino operating system suffers from one serious security vulnerability.
The vulnerability we speak of was brought to light by the cyber security researcher Matthew Hickey, who confirmed that also Big Sur suffers from the serious vulnerability identified by the code CVE-2021-3156 and nicknamed Baron samedit. This has already been seen on Linux and is called serious because it would allow root access from the outside.
READ ALSO: Yi Dome Guard / Dome U, the review
MacOS also suffers from this vulnerability because Apple’s operating system refers to some elements operating system FreeBSD. The matter is also serious because currently Apple hasn’t released a patch yet for the vulnerability described, therefore all its devices are not covered by the threat, including new ones Mac M1.
Can confirm with macOS Big Sur on both x86_64 and aarch64. pic.twitter.com/nQqQ8rskv7
— Will Dormann (@wdormann) February 2, 2021
CVE-2021-3156 also impacts @apple MacOS Big Sur (unpatched at present), you can enable exploitation of the issue by symlinking sudo to sudoedit and then triggering the heap overflow to escalate one’s privileges to 1337 uid=0. Fun for @ p0sixninja pic.twitter.com/tyXFB3odxE
— Hacker Fantastic ???? (@hackerfantastic) February 2, 2021
Via: XDA
–
