Based on our fuzzing methodology, we found dozens of vulnerabilities, including double free, oob read/write etc. which we will provide a detailed analysis of. However, these 10 vulnerabilities is the only part of we found, others will be analyzed later and submitted to Apple.
By Lilang Wu and Moony Li
Full Abstract & Presentation blackhat.com/us-19/briefings/schedule/#debug-for-bug-crack-and-hack-apple-core-by-itself—fun-and-profit-to-debug-and-fuzz-apple-kernel-by-lldb-script-15616