Security vulnerabilities and automated fixes for mach o issues
2 posts found
A critical heap buffer overflow vulnerability was discovered and patched in archo.cpp, a Mach-O binary parsing component used in mobile app signing toolchains. Attackers could craft malicious Mach-O binaries or dylib files to trigger memory corruption, potentially leading to arbitrary code execution. The fix adds proper bounds validation before memcpy operations, eliminating the ability for attacker-controlled file content to overflow heap buffers.
A critical memory corruption vulnerability was discovered and patched in the ZSign binary signing pipeline, where unchecked `memcpy` operations combined with unvalidated size fields from Mach-O binary headers created a chained attack surface for arbitrary code execution. Attackers with access to the signing functionality could submit crafted binaries to trigger integer overflows and achieve code execution at the privilege level of the signing process. This fix reinforces why input validation at