New Security Concerns for Apple Devices: SLAP and FLOP Vulnerabilities
Following the patching of a critical zero-day security flaw impacting iPhones, iPads, Macs, and other Apple products, experts at the Georgia Institute of Technology have uncovered two new vulnerabilities that potentially jeopardize a wide range of contemporary Apple devices.
The Sandbox Defense Mechanism
Modern web browsers utilize a technique known as “sandboxing” to isolate active web sessions. This method ensures that one tab or window cannot access data from another tab or window. However, the newly identified SLAP and FLOP vulnerabilities take advantage of certain functionalities within Apple’s recent processor technology to bypass these protective measures.
Understanding SLAP
The latest M2 and A15 chip generations are equipped with a capability called Load Address Prediction (LAP). This predictive feature aims to enhance performance by anticipating the memory address for upcoming requests. The SLAP vulnerability (Speculation Attacks via Load Address Prediction) misleads this algorithm into fetching sensitive data from different browser processes by training it incorrectly.
Currently, it seems that SLAP primarily affects Apple’s Safari browser.
A Closer Look at FLOP
Apple’s advancements continue with the introduction of processors like M3 and A17 which include an improved feature known as Load Value Predictor (LVP). This innovation further streamlines processing speeds by guessing potential values for memory requests rather than waiting for actual data retrieval. The vulnerability named FLOP (False Load Output Predictions) manipulates the predictor’s expectations by consistently supplying false values even when underlying data changes occur. This allows unauthorized code execution on unpredictable data responses.
FLOP poses risks in both Safari and Chrome browsers.
Affected Apple Devices
The research team indicates several models equipped with vulnerable hardware:
- Mac Laptops: All models from 2022 onwards including MacBook Air and MacBook Pro
- Mac Desktops: Models launched from 2023 onwards such as Mac Mini, iMac, Mac Studio, and Mac Pro
- iPad Models: All iPad Pro versions released since September 2021 along with the latest Air and Mini editions (6th- & 7th-gen)
- IPhones: All models introduced since September 2021 including iPhone 13 through 16 series and third-generation iPhone SE
Your Concerns Addressed
The researchers assure users there is currently no evidence suggesting that either SLAP or FLOP has been exploited in real-world scenarios. Additionally, communication from Apple to BleepingComputer acknowledged their analysis finds no immediate threat posed by these issues to users at this time.
Status on Mitigation Efforts by Apple
A resolution is underway but appears slow-paced. The researchers formally reported the SLAP issue on May 24, 2024, followed closely by depends following their disclosure on September 3rd regarding FLOP’s concerns. Although numerous system updates have been rolled out since then from Apple’s end, neither vulnerability has yet been addressed effectively within those updates.