October 30, Google internal secret security team "Project Zero" recently in the Apple OSX system important kernel found some program vulnerabilities, which is mainly in the Apple mobile operating system iOS, this loophole allows hackers To carry out the root-level privilege upgrade, so that those who do not update the OS system to launch attacks. Google's Project Zero is the company's in-house super-hacker team, created two years ago, with the mission of finding, tracking, and repairing global software vulnerabilities.
In fact, as early as June of this year, Project Zero team member Ian & middot; Ian Beer (Ian Beer) has informed the Apple side of the loopholes, after which Apple requires a 60-day grace period in order to open these issues before Properly resolved. Google initially rejected the request, but eventually agreed to postpone the date of these loopholes to September 21.
However, Apple to the deadline, the patch used to fix these vulnerabilities have not been able to succeed, the results exceeded the agreed date, however, Apple has extended the grace period for Apple. In fact, today, Apple has received a grace period of nearly 5 months, of course, Apple has now solved the problem - in the past two weeks has released the iOS 10.1 and OSX 10. .12. .1. And other systems, but also for the kernel vulnerability to take some remedial measures.
Apple had the vulnerability for the "emergency repair" patch, that is, "short-term relief" patch, also appeared in the September 20 launch of the Mac OS 10.12 system. Of course, from the time point of view, is indeed limited to Google in the September 21, but because the patch may be bypassed, so after the grace period deadline, Apple has not disclosed these messages.
Later, on October 3, Apple in the beta version of the Mac OS 10.12.1 system, tried a more secure solution. As we all know, Mac OS 10.12.1 system in recent days just to market.
Of course, Google security team found and suggested that the current system has been used to update the OSX and iOS users will not easily infected with these vulnerabilities found in Google.