Google’s Project Zero has exposed a
Google’s Project Zero team is well-known for its knack of finding security flaws in the company’s own products as well as those manufactured by other firms. Its members locate flaws in software, privately report them to the manufacturers, and give them 90 days to resolve the problem before publicly disclosing it.
Last year, the team revealed vulnerabilities in Windows 10 S and Microsoft Edge. Now, it has exposed a “high severity” flaw in macOS’ kernel.
A security researcher from Google’s Project Zero has discovered that even though macOS’ kernel, XNU, allows copy-on-write (COW) behavior in some cases, it is essential that any copied memory is not available for modifications from the source process.
