CommunityNews

Process injection: breaking all macOS security layers with a single vulnerability

Process injection: breaking all macOS security layers with a single vulnerability.
If you have created a new macOS app with Xcode 13.2, you may noticed this new method in the template:

(BOOL)applicationSupportsSecureRestorableState:(NSApplication *)app { return YES; } This was added to the Xcode template to address a process injection vulnerability we reported!
In macOS 12.0.1 Monterey, Apple fixed CVE-2021-30873. This was a process injection vulnerability affecting (essentially) all macOS AppKit-based applications. We reported this vulnerability to Apple, along with methods to use this vulnerability to escape the sandbox, elevate privileges to root and bypass the filesystem restrictions of SIP.

Read in full here:

This thread was posted by one of our members via one of our news source trackers.

View thread on forum

#macos /security

0 1308 0

2022-08-16 03:10:26 UTC

Where Next?

View thread on forum

security

macos

Home macOS>In The News

#macos /security

0 1308 0

Last post

Popular Macos topics

macOS>In The News

Apple's Oct. 13 event: What to expect and how to watch

The iPhone 12 announcement might be right around the corner. Tech experts predict Apple will reveal this new line of mobile devices durin...

techrepublic.com

#apple

0 875 0

2020-10-06 22:08:45 UTC

New

macOS>In The News

Run MacOS Software On Linux Using Darling

Run MacOS Software On Linux Using Darling - OSTechNix. Darling is a translation layer that allows us to run macOS applications on Linux....

ostechnix.com

#macos #linux

7 979 2

2021-11-04 20:06:50 UTC

New

macOS>In The News

Apple becomes first firm to hit $3tn market value

The firm’s value more than doubled during the pandemic as people bought more gadgets during lockdowns.

bbc.co.uk

#apple

0 833 0

2022-01-05 02:44:24 UTC

New

macOS>In The News

Apple’s “realityOS” surfaces in GitHub commits, App Store logs

The discoveries strongly support what onlookers already suspected.

arstechnica.com

#apple #github

0 843 0

2022-02-10 15:37:08 UTC

New

macOS>In The News

Hardening macOS

Hardening macOS. Quick and easy guide for securing macOS systems, for both laymen and security enthusiasts. Last updated for Monterey (1...

bejarano.io

#macos

1 1094 3

2022-06-28 23:58:50 UTC

New

macOS>In The News

Severe thermal throttling discovered in Apple's M2 MacBook Pro

twitter.com

#apple #macbook

0 937 0

2022-07-01 23:02:00 UTC

New

macOS>In The News

Get root on macOS 12.3.1: proof-of-concepts for Linus Henze’s CoreTrust and DriverKit bugs (CVE-2022-26766, CVE-2022-26763)

Get root on macOS 12.3.1: proof-of-concepts for Linus Henze’s CoreTrust and DriverKit bugs (CVE-2022-26766, CVE-2022-26763). Here are tw...

worthdoingbadly.com

#macos #bugs

0 1226 0

2022-07-06 13:08:51 UTC

New

macOS>In The News

Using Nix on macOS

In this post, I’m going to stick with running standard Nix binaries and not use any additional tools (although there are two shell script...

checkoway.net

#macos #nix

0 975 0

2022-08-01 23:52:09 UTC

New

macOS>In The News

macOS Free and Open-Source Security Tools by Objective-See

Objective-See: Tools. Free, open-source tools to protect your Mac

objective-see.org

#macos /security

1 974 0

2022-09-27 01:23:30 UTC

New

macOS>In The News

VMware Fusion 13 – native support for Apple Silicon Macs

VMware Fusion 13 Now Available With Native Support for Apple Silicon Macs. VMware today announced the launch of Fusion 13, the latest ma...

macrumors.com

#macs #apple

0 898 0

2022-11-19 15:57:14 UTC

New

Other popular topics

General Dev>Dev Chat

HELLO WORLD (Introductions thread!)

Hello Devtalk World! Please let us know a little about who you are and where you’re from :nerd_face:

#community

482 7161 117

2026-03-22 04:54:57 UTC

New

General Dev>Hardware

Moonlander Keyboard (Mechanical) (Ergonomic) (Split) (Ortholinear)

Bought the Moonlander mechanical keyboard. Cherry Brown MX switches. Arms and wrists have been hurting enough that it’s time I did someth...

#hardware /keyboards #moonlander #mechanical-keyboards #ortholinear #ergonomic

212 17779 90

2021-07-13 15:33:55 UTC

New

Backend>Questions

Can someone explain the -t option/flag in docker run command?

I know that -t flag is used along with -i flag for getting an interactive shell. But I cannot digest what the man page for docker run com...

#docker

7 10261 2

2020-09-01 07:19:16 UTC

New

General Dev>Hardware

Poll: Which keyboard layout do you use?

poll poll Be sure to check out @Dusty’s article posted here: An Introduction to Alternative Keyboard Layouts It’s one of the best write-...

colemakmods.github.io

#polls /keyboards

10 6048 11

2020-10-31 23:12:33 UTC

New

Data Science

Genetic Algorithms in Elixir

From finance to artificial intelligence, genetic algorithms are a powerful tool with a wide array of applications. But you don't need an ...

#pragprog #ai /elixir #published-book /book-genetic-algorithms-in-elixir

25 5243 6

2021-02-09 12:32:09 UTC

New

General Dev>Hardware

Keyboard thock (sound)

I’ve been hearing quite a lot of comments relating to the sound of a keyboard, with one of the most desirable of these called ‘thock’, he...

/keyboards #mechanical-keyboards

14 11197 8

2020-11-11 11:59:23 UTC

New

General Dev>Dev Chat

Roc Language - a new purely functional programming language built for speed and ergonomics

Hi folks, I don’t know if I saw this here but, here’s a new programming language, called Roc Reminds me a bit of Elm and thus Haskell. ...

#programminguages #functional-programming

49 5164 14

2021-11-10 20:03:09 UTC

New

Community>In The Spotlight

Spotlight: Rebecca Skinner (Author) Interview and AMA!

Author Spotlight Rebecca Skinner @RebeccaSkinner Welcome to our latest author spotlight, where we sit down with Rebecca Skinner, auth...

#author-spotlight /haskell /book-effective-haskell

106 11719 28

2022-11-16 10:29:37 UTC

New

Community>In The Spotlight

Spotlight: VM Brasseur (Author) Interview and AMA!

Author Spotlight: VM Brasseur @vmbrasseur We have a treat for you today! We turn the spotlight onto Open Source as we sit down with V...

#author-spotlight /book-forge-your-future-with-open-source

16 5051 11

2023-03-27 16:00:12 UTC

New

Backend>Learning Resources

MySQL 9 Essentials

A concise guide to MySQL 9 database administration, covering fundamental concepts, techniques, and best practices. Neil Smyth MySQL...

pragprog.com

#pragprog #published-book /mysql /book-mysql-9-essentials

2 4162 0

2025-03-12 13:05:49 UTC

New

Process injection: breaking all macOS security layers with a single vulnerability

CommunityNews

Process injection: breaking all macOS security layers with a single vulnerability

Where Next?

Popular Macos topics

Apple's Oct. 13 event: What to expect and how to watch

Run MacOS Software On Linux Using Darling

Apple becomes first firm to hit $3tn market value

Apple’s “realityOS” surfaces in GitHub commits, App Store logs

Hardening macOS

Severe thermal throttling discovered in Apple's M2 MacBook Pro

Get root on macOS 12.3.1: proof-of-concepts for Linus Henze’s CoreTrust and DriverKit bugs (CVE-2022-26766, CVE-2022-26763)

Using Nix on macOS

macOS Free and Open-Source Security Tools by Objective-See

VMware Fusion 13 – native support for Apple Silicon Macs

Other popular topics

HELLO WORLD (Introductions thread!)

Moonlander Keyboard (Mechanical) (Ergonomic) (Split) (Ortholinear)

Can someone explain the -t option/flag in docker run command?

Poll: Which keyboard layout do you use?

Genetic Algorithms in Elixir

Keyboard thock (sound)

Roc Language - a new purely functional programming language built for speed and ergonomics

Spotlight: Rebecca Skinner (Author) Interview and AMA!

Spotlight: VM Brasseur (Author) Interview and AMA!

MySQL 9 Essentials

Latest in Security

macOS>In The News

Latest on Devtalk

We ❤️ helpful members!

Categories:

Sub Categories:

Popular Portals

We're in Beta

Process injection: breaking all macOS security layers with a single vulnerability

CommunityNews

Process injection: breaking all macOS security layers with a single vulnerability

Where Next?

Popular Macos topics

Apple's Oct. 13 event: What to expect and how to watch

Run MacOS Software On Linux Using Darling

Apple becomes first firm to hit $3tn market value

Apple’s “realityOS” surfaces in GitHub commits, App Store logs

Hardening macOS

Severe thermal throttling discovered in Apple's M2 MacBook Pro

Get root on macOS 12.3.1: proof-of-concepts for Linus Henze’s CoreTrust and DriverKit bugs (CVE-2022-26766, CVE-2022-26763)

Using Nix on macOS

macOS Free and Open-Source Security Tools by Objective-See

VMware Fusion 13 – native support for Apple Silicon Macs

Other popular topics

HELLO WORLD (Introductions thread!)

Moonlander Keyboard (Mechanical) (Ergonomic) (Split) (Ortholinear)

Can someone explain the -t option/flag in docker run command?

Poll: Which keyboard layout do you use?

Genetic Algorithms in Elixir

Keyboard thock (sound)

Roc Language - a new purely functional programming language built for speed and ergonomics

Spotlight: Rebecca Skinner (Author) Interview and AMA!

Spotlight: VM Brasseur (Author) Interview and AMA!

MySQL 9 Essentials

Sponsor Spotlight

Latest in Security

macOS>In The News

Latest on Devtalk

We ❤️ helpful members!

Devtalk Sponsors

Categories:

Sub Categories:

Popular Portals

Devtalk Sponsors

We're in Beta