ALTV!STRE: https://infosec.exchange/@altvist/116710041220058870
It’s hard to believe, but #apple reopened the #vulnerability report again after that post (writeup + poc) in my blog. So the report is in review for the third time. What a circus 🤦♂️
They closed the report. So, the timeline is https://altvi.st/a-bug-in-apple-audiotoolbox-that-leads-to-heap-oob-read/#timeline for now.
Well, I should write a separate post and share my experience with the #apple #security #bounty program.