Hacker News new | ask | show | jobs
by citizen_friend 773 days ago
So are we going to take this twitter post at face value? Anyone have more info?
1 comments
lapcat 773 days ago
Yes, it's literally the first item in the iOS 17.5 security release notes: https://support.apple.com/HT214101
link
citizen_friend 773 days ago
Yep, that was in the tweet. Got any more info about the exploit or why it’s not in their categories?

I presume some in the list did received bounties?

link
lapcat 773 days ago
Here are the categories: https://security.apple.com/bounty/categories/

I'm not really sure what else you're asking for. Nobody in the world except Apple Product Security itself knows why Apple Product Security is refusing to pay a bounty in this case. It makes no sense.

link
citizen_friend 773 days ago
Well. He knows more about the exploit. Maybe he could tell us what it is.
link
lapcat 772 days ago
He did: https://twitter.com/R00tkitSMM/status/1790391961737711697

Satisfied now?

link
citizen_friend 771 days ago
Updated from his twitter: apple apparently confirmed i am right and that it’s not exploitable in real user software. Still outraged?
link
citizen_friend 772 days ago
Yep. It explains why he didn’t get paid.
link