"Security Fix: A stack overflow vulnerability was found in nan* functions that could cause applications, which process long strings with the nan f" WHAT arbitrary code? Code that can run elevated? What does arbitrary mean? Just because you can get code to run, doesn't mean it can override security and sandboxing that is built in. And who actually exploited this vulnerability?
There has been a lot of security updates Apple has released because of this sort of thing. What I want to know is, Which exploits have been successfully released into the wild, have delivered their payload, and have "infected" a system without tricking the end user into clicking "OK" in a bogus dialog, or without the user even being aware it was happening. Bob S > unction, to crash or, potentially, execute arbitrary code.On Aug 23, 2017, at > 14:48 , J. Landman Gay via use-livecode <use-livecode@lists.runrev.com> wrote: > > This one was spotted on Aug. 2 this year: > > https://packetstormsecurity.com/files/os/osx/ > > -- > Jacqueline Landman Gay | jac...@hyperactivesw.com _______________________________________________ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
