CommunityNews

Process injection: breaking all macOS security layers with a single vulnerability

Process injection: breaking all macOS security layers with a single vulnerability.
If you have created a new macOS app with Xcode 13.2, you may noticed this new method in the template:

(BOOL)applicationSupportsSecureRestorableState:(NSApplication *)app { return YES; } This was added to the Xcode template to address a process injection vulnerability we reported!
In macOS 12.0.1 Monterey, Apple fixed CVE-2021-30873. This was a process injection vulnerability affecting (essentially) all macOS AppKit-based applications. We reported this vulnerability to Apple, along with methods to use this vulnerability to escape the sandbox, elevate privileges to root and bypass the filesystem restrictions of SIP.

Read in full here:

This thread was posted by one of our members via one of our news source trackers.

View thread on forum

#macos /security

0 1308 0

2022-08-16 03:10:26 UTC

Where Next?

View thread on forum

security

macos

Home macOS>In The News

#macos /security

0 1308 0

Last post

Popular Macos topics

macOS>In The News

Apple bans Fortnite from App Store during Epic Games legal battle

The game won’t be available on iPhones or other Apple devices until its legal battle with Epic Games ends.

bbc.co.uk

#games #apple

0 855 0

2021-09-24 04:30:52 UTC

New

macOS>In The News

Steve Jobs tried to convince Dell to license Mac software

The Apple-Dell deal that could have changed history. It’s been 10 years since the death of Steve Jobs. Michael Dell shares his memories ...

cnet.com

#jobs

0 926 0

2021-10-08 14:20:30 UTC

New

macOS>In The News

Samsung announces Unpacked 2 event for Wednesday Oct 20th, right after Apple and Google

Samsung announces Unpacked 2 event for Wednesday Oct 20th, right after Apple and Google. New phones are unlikely, but new colors may be ...

theverge.com

#apple #google #samsung

0 795 0

2021-10-13 14:27:20 UTC

New

macOS>In The News

Asahi Linux is reverse-engineering support for Apple Silicon, including M1 Ultra

Developers’ work on past M1 hardware is making it easier to support new chips.

arstechnica.com

#linux #apple

0 888 0

2022-03-26 14:35:35 UTC

New

macOS>In The News

Apple iPod creator warns the metaverse will encourage trolls

Tony Fadell says the virtual reality world risks damaging human interaction and creating toxicity.

bbc.co.uk

#apple #metaverse

0 869 0

2022-05-12 22:39:21 UTC

New

macOS>In The News

M2 MacBook Pro’s 256GB SSD is only about half as fast as the M1 version’s

Higher-capacity versions of the new MacBook Pro don’t seem to be affected.

arstechnica.com

#ssd #macbook

0 972 0

2022-06-27 23:03:23 UTC

New

macOS>In The News

Apple's claim is that it bans other browsers for security

twitter.com

/security #apple #browsers

0 834 0

2022-06-28 12:24:36 UTC

New

macOS>In The News

Steve Jobs negotiates Apple's deal with Microsoft

Steve Jobs negotiates Apple’s deal with Microsoft. Greg, Here is a review of the terms we last discussed, as well as some issues I have ...

techemails.com

#jobs #apple #microsoft

0 987 0

2022-08-08 01:27:39 UTC

New

macOS>In The News

Apple refuses to produce information regarding The App Association (ACT)

Apple refuses to cooperate with U.S. government agency seeking information on its funding of, and influence over, ACT | The App(le) Assoc...

fosspatents.com

#apple

0 810 0

2022-09-04 14:11:09 UTC

New

macOS>In The News

macOS Free and Open-Source Security Tools by Objective-See

Objective-See: Tools. Free, open-source tools to protect your Mac

objective-see.org

#macos /security

1 974 0

2022-09-27 01:23:30 UTC

New

Other popular topics

General Dev>Dev Chat

What are you listening to?

A thread that every forum needs! Simply post a link to a track on YouTube (or SoundCloud or Vimeo amongst others!) on a separate line an...

#community #music

202 5126 102

2025-07-26 22:00:31 UTC

New

General Dev>Dev Chat

Best chairs for developers?

What chair do you have while working… and why? Is there a ‘best’ type of chair or working position for developers?

#workspace #opinions

74 5463 41

2022-12-31 03:22:23 UTC

New

Science/Tech>Tech Chat

What are you watching?

Or looking forward to? :nerd_face:

#community

490 12945 266

2025-12-31 08:30:55 UTC

New

General Dev>Hardware

Moonlander Keyboard (Mechanical) (Ergonomic) (Split) (Ortholinear)

Bought the Moonlander mechanical keyboard. Cherry Brown MX switches. Arms and wrists have been hurting enough that it’s time I did someth...

#hardware /keyboards #moonlander #mechanical-keyboards #ortholinear #ergonomic

212 17779 90

2021-07-13 15:33:55 UTC

New

General Dev>Dev Chat

Warp—The blazingly fast, Rust-based terminal

A few weeks ago I started using Warp a terminal written in rust. Though in it’s current state of development there are a few caveats (tab...

/rust #terminal

52 6785 22

2025-02-26 17:47:24 UTC

New

Backend>Learning Resources

Effective Haskell

Build efficient applications that exploit the unique benefits of a pure functional language, learning from an engineer who uses Haskell t...

pragprog.com

#pragprog /haskell #published-book /book-effective-haskell

15 10218 1

2022-02-16 10:09:51 UTC

New

Community>In The Spotlight

Spotlight: Dmitry Zinoviev (Author) Interview and AMA!

Author Spotlight Dmitry Zinoviev @aqsaqal Today we’re putting our spotlight on Dmitry Zinoviev, author of Data Science Essentials in ...

#author-spotlight /python /book-complex-network-analysis-in-python /book-data-science-essentials-in-python /book-resourceful-code-reuse /book-pythonic-programming

33 5211 14

2022-10-11 20:07:10 UTC

New

Game Dev>Questions

I want to learn how make a game, but where should I start?

I’m able to do the “artistic” part of game-development; character designing/modeling, music, environment modeling, etc. However, I don’t...

#game-dev

15 4965 9

2025-10-18 13:12:58 UTC

New

Backend>Learning Resources

MySQL 9 Essentials

A concise guide to MySQL 9 database administration, covering fundamental concepts, techniques, and best practices. Neil Smyth MySQL...

pragprog.com

#pragprog #published-book /mysql /book-mysql-9-essentials

2 4162 0

2025-03-12 13:05:49 UTC

New

AI>Questions

What are the best text-to-speech ai generation tools that you can run locally?

Background Lately I am in a quest to find a good quality TTS ai generation tool to run locally in order to create audio for some videos I...

#ai #text-to-speech

6 8411 3

2025-03-24 16:48:39 UTC

New

Process injection: breaking all macOS security layers with a single vulnerability

CommunityNews

Process injection: breaking all macOS security layers with a single vulnerability

Where Next?

Popular Macos topics

Apple bans Fortnite from App Store during Epic Games legal battle

Steve Jobs tried to convince Dell to license Mac software

Samsung announces Unpacked 2 event for Wednesday Oct 20th, right after Apple and Google

Asahi Linux is reverse-engineering support for Apple Silicon, including M1 Ultra

Apple iPod creator warns the metaverse will encourage trolls

M2 MacBook Pro’s 256GB SSD is only about half as fast as the M1 version’s

Apple's claim is that it bans other browsers for security

Steve Jobs negotiates Apple's deal with Microsoft

Apple refuses to produce information regarding The App Association (ACT)

macOS Free and Open-Source Security Tools by Objective-See

Other popular topics

What are you listening to?

Best chairs for developers?

What are you watching?

Moonlander Keyboard (Mechanical) (Ergonomic) (Split) (Ortholinear)

Warp—The blazingly fast, Rust-based terminal

Effective Haskell

Spotlight: Dmitry Zinoviev (Author) Interview and AMA!

I want to learn how make a game, but where should I start?

MySQL 9 Essentials

What are the best text-to-speech ai generation tools that you can run locally?

Latest in Security

macOS>In The News

Latest on Devtalk

We ❤️ helpful members!

Categories:

Sub Categories:

Popular Portals

We're in Beta

Process injection: breaking all macOS security layers with a single vulnerability

CommunityNews

Process injection: breaking all macOS security layers with a single vulnerability

Where Next?

Popular Macos topics

Apple bans Fortnite from App Store during Epic Games legal battle

Steve Jobs tried to convince Dell to license Mac software

Samsung announces Unpacked 2 event for Wednesday Oct 20th, right after Apple and Google

Asahi Linux is reverse-engineering support for Apple Silicon, including M1 Ultra

Apple iPod creator warns the metaverse will encourage trolls

M2 MacBook Pro’s 256GB SSD is only about half as fast as the M1 version’s

Apple's claim is that it bans other browsers for security

Steve Jobs negotiates Apple's deal with Microsoft

Apple refuses to produce information regarding The App Association (ACT)

macOS Free and Open-Source Security Tools by Objective-See

Other popular topics

What are you listening to?

Best chairs for developers?

What are you watching?

Moonlander Keyboard (Mechanical) (Ergonomic) (Split) (Ortholinear)

Warp—The blazingly fast, Rust-based terminal

Effective Haskell

Spotlight: Dmitry Zinoviev (Author) Interview and AMA!

I want to learn how make a game, but where should I start?

MySQL 9 Essentials

What are the best text-to-speech ai generation tools that you can run locally?

Sponsor Spotlight

Latest in Security

macOS>In The News

Latest on Devtalk

We ❤️ helpful members!

Devtalk Sponsors

Categories:

Sub Categories:

Popular Portals

Devtalk Sponsors

We're in Beta