Hacker News new | past | comments | ask | show | jobs | submit login
CVE-2020-9771 is not fixed correctly (2020) (theevilbit.github.io)
73 points by adib on July 4, 2021 | hide | past | favorite | 4 comments



Wow. A "wontfix" for such a critical bug?

I just checked and there are quite a few apps that I've had to give full disk access to - some of which include applications running remote code or reading data from untrusted usb devices device.

Wonder what could go wrong.


Full disk access bypassing user permissions ... Is bad, even if "full disk access" to the app was indeed given.

This is not obvious when you allow terminal (or any other app) the disk access.


Too bad this was posted on a US holiday weekend. :(


[2020]




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: