Y
Hacker News
new
|
ask
|
show
|
jobs
by
WhyNotHugo
1580 days ago
The biggest issue here is that this image parsing was done by such a high-privileged process. What happened to all the sandboxes and stuff?
1 comments
sprremix
1579 days ago
From the original article [0], last line: "In a future post (currently being finished), we'll take a look at exactly how they escape the IMTranscoderAgent sandbox."
[0]:
https://googleprojectzero.blogspot.com/2021/12/a-deep-dive-i...
link
skavi
1579 days ago
Is the CoreGraphics ImageIO stuff privileged?
link
[0]: https://googleprojectzero.blogspot.com/2021/12/a-deep-dive-i...