On the eve of the official version of iOS12, there are foreign media reports that when a specific 15 lines of CSS code is built into the page (a lot of elements are embedded in the Backdrop-filter), as long as the iOS device access will cause 'device crash restart', and the Mac user passes the Safari browser. Access will also cause the browser to crash and restart, the affected version is iOS 9-iOS 12 GM version.
iOS12
This discovery was thought to have caused the official version of iOS12 to be skipped, but the official version of iOS12 is still being pushed on time this morning.
After pushing the official version of iOS12 today, security researcher Sabri immediately upgraded his iPhone X to the official version of iOS12, but he regrets that the vulnerability that caused the iPhone device to crash and crashed still exists, and Apple did not fix it.
Security Researcher Sabri Twitter screenshot
It is understood that this vulnerability comes from the WebKit engine. As long as a large number of elements are embedded in the CSS Backdrop-fliter, it will exhaust all the resources of the device and cause a kernel error. The good result of this vulnerability is only to crash the device and restart. Cause other effects. I believe Apple will soon push another iOS 12.0.1 version, fix WebKit and some bugs and improve system stability.
