05 October 18, 13:25
Quote:A Google Project Zero researcher has published a macOS exploit to demonstrate that Apple is exposing its users to security risks by patching serious flaws in iOS but not revealing the fact until it fixes the same bugs in macOS a week later.
This happened during Apple's update for critical flaws in iOS 12, tvOS 12 and Safari 12 on September 17.
A Wayback Machine snapshot of the original advisory doesn't mention any of the bugs that Project Zero researcher Ivan Fratric had reported to Apple, and which were actually fixed.
Then, a week later, after Apple patched the same bugs in macOS, the company updated its original advisory with details about the nine flaws that Fratric had reported, six of which affected Safari.
Source: https://www.zdnet.com/article/google-app...ing-users/