After releasing some Microsoft zero day exploits for exceeding their self imposed 90 day limit, Google releases 3 Apple OS X zero days for exceeding the same 90 day limit.
quote:
The first flaw, "OS X networkd "effective_audit_token" XPC type confusion sandbox escape," which involves circumvention of commands in the network system, may be mitigated in OS X Yosemite, but there is no clear explaination of whether this is the case. The second vulnerability documents "OS X IOKit kernel code execution due to NULL pointer dereference in IntelAccelerator," and finally, the third, "OS X IOKit kernel memory corruption due to bad bzero in IOBluetoothDevice." includes an exploit related to OS X's kernel structure.
»
www.zdnet.com/article/go ··· ilities/Google is making friends everywhere now aren't they.
Blake