December 2018

Meltdown/Spectre

Throw out all your computers. Again.

Intel CPU Design Flaw
Meltdown and Spectre attack
Reading privileged memory with a side-channel
AMD processors unaffected
Apple deals with KPTI with DoubleMap
As expected, Intel's CEO dumps his stock
Retpoline
Theo De Raadt talking about Intel flaws back in 2007


IOHIDeous


This is the tale of a macOS-only vulnerability in IOHIDFamily that yields kernel r/w and can be exploited by any unprivileged user.

https://siguza.github.io/IOHIDeous/

MSPaint in your browser

http://jspaint.ml/