腾讯网

苹果发布紧急更新,以修复针对Intel架构Mac系统的零日漏洞

PANews 11月20日消息,苹果发布紧急安全更新,修复两处针对Intel架构Mac用户的零日漏洞。这些漏洞涉及WebKit和JavaScriptCore引擎,可能通过恶意网页或邮件触发任意代码执行,允许攻击者在设备上植入恶意软件。漏洞分别为CVE-2024-44308(JavaScriptCore漏洞)和CVE-2024-44309 ...
生物通

高级提取与变异技术:基于模板的JavaScript引擎模糊测试方法

JavaScript引擎的模糊测试研究提出TemuJs框架,通过抽象模板和语义替换实现高效测试,在V8、SpiderMonkey和JavaScriptCore上发现44个漏洞,覆盖率提升10.3%。 摘要 JavaScript(JS)引擎实现了复杂的语言语义和优化策略,以支持JS的动态特性,这使得它们难以被彻底测试 ...
InfoQ

NativeScript Replaces JavaScriptCore with V8 for iOS Apps

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Cory Benfield discusses the evolution of ...
MacRumors

Make Sure to Update: iOS 18.1.1 and macOS Sequoia 15.1.1 Fix Actively Exploited Vulnerabilities

The iOS 18.1.1, iPadOS 18.1.1, and macOS Sequoia 15.1.1 updates that Apple released today address JavaScriptCore and WebKit vulnerabilities that Apple says have been actively exploited on some devices ...
AppleInsider

New low level JavaScript interpreter to boost WebKit performance more than 200%

Apple's WebKit JavaScriptCore is now a "triple tier virtual machine," offering the potential for 2-2.5 times faster JavaScript performance in Safari. Recent changes in Apple's WebKit open source ...
9to5google

Fuchsia Friday: The web and Fuchsia’s first ‘customers’

This week in Fuchsia Friday, we take a look at how Fuchsia will appeal to web developers and an interesting look at Fuchsia possibly being used outside Google. We’ve long known that Google is trying ...
TechSpot

Apple fixed two zero-day vulnerabilities weaponized against Intel-based macOS systems

Facepalm: Google researchers have discovered a couple of zero-day vulnerabilities in Apple's WebKit components. The flaws have already been patched, but Cupertino strongly urges users to update their ...