Techly NewsGet the app

Get the latest tech news

CVE 2025 31200


Background On April 16, 2025, Apple released a patch for a bug in CoreAudio which they said was “Actively exploited in the wild.” This flew under the radar a bit. Epsilon’s blog has a great writeup of the other bug that was presumably exploited in this chain: a bug in RPAC. The only thing out there that I am aware of about the CoreAudio side of the bug is a video by Billy Ellis (it’s great.

With much less effort, I was able to find out that HOA plausibly stood for Higher Order Ambisonics: a method of representing sound as a spatial sound-field centered around the listeners head. Before I reverse engineered this monster function, I thought it made sense to actually try and do a little bit to understand what that error could mean in more contextual, audio terms. Combined with the function name InferProfileFromCodecConfigs, I guessed that this pointed to three different ‘audio profile configurations.’ The fact that this step size is used to index into multiple global arrays (&apac::kProfileConfigs + i, i + &data_8ec838, etc.)

Get the Android app

Or read this on Hacker News

Read more on:

Photo of CVE

CVE

Related news:

News photo

Not Every CVE Deserves a Fire Drill: Focus on What’s Exploitable

News photo

CISA statement on funding for CVE program

News photo

Can We Trust CVE?

« Elon Musk’s Neuralink closes a $650M Series E
Decorative Text Within HTML »