Reply to post: Re: Not the most important part of this patch....

Apple squashes cert-handling bug affecting macOS and iOS

patrickstar

Re: Not the most important part of this patch....

This isn't some error that would make an otherwise invalid certificate valid. This is a memory corruption bug in the certificate handling. If it's successfully exploited, it would mean that anyone who can serve up a certificate (like any web site visited over https) can pwn you.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021