CVE-2022-32929's Fix is Bad
With the recent release of iOS 16.1, Apple noted that CVE-2022-32929 was addressed: Available for: iPhone 8 and later, iPad Pro (all models), iPad Air 3rd generation and later, iPad 5th generation and later, iPad mini 5th generation and later Impact: An app may be able to access iOS backups Description: A permissions issue was addressed with additional restrictions. CVE-2022-32929: Csaba Fitzl (@theevilbit) of Offensive Security What’s odd is that the wording of the issue indicates that an app on iOS can access backups, but backups are stored on the paired Mac....