好的,我现在需要帮用户总结这篇文章的内容。用户的要求是用中文,控制在100字以内,不需要特定的开头,直接描述文章内容。 首先,我快速浏览一下文章。文章讲的是苹果发布了iOS/iPadOS 26.4.2和18.7.8更新,修复了一个漏洞CVE-2026-28950。这个漏洞影响是通知即使被标记为删除也可能保留。描述部分提到这是一个日志问题,已经改进了数据删除。苹果没有标记这个漏洞被利用,但FBI在刑事调查中利用它提取了Signal消息。Signal是端到端加密的,但会在屏幕上显示通知内容,这些内容可能被保留下来。 接下来,我需要把这些信息浓缩到100字以内。关键点包括:苹果更新修复漏洞、漏洞导致删除的通知保留、FBI利用此漏洞提取Signal消息、Signal依赖苹果通知服务的问题。 然后组织语言:苹果发布更新修复漏洞,该漏洞导致删除的通知保留;FBI利用此漏洞提取Signal消息;Signal依赖苹果通知服务框架,但数据未被正确删除。 最后检查字数是否在限制内,并确保表达清晰准确。 </think> 苹果发布iOS/iPadOS 26.4.2和18.7.8更新修复漏洞CVE-2026-28950,该漏洞可能导致标记为删除的通知意外保留。FBI利用此漏洞从设备中提取Signal加密消息。Signal依赖Apple的Notification Services框架生成通知,但iOS未正确删除相关内容。 2026-4-23 10:18:30 Author: isc.sans.edu(查看原文) 阅读量:24 收藏
Apple yesterday released iOS/iPadOS 26.4.2 and iOS/iPadOS 18.7.8. This update fixes a single Notification Services vulnerability, CVE-2026-28950:
Impact: Notifications marked for deletion could be unexpectedly retained on the device
Description: A logging issue was addressed with improved data redaction.
Apple did not mark the vulnerability as exploited. However, recent news articles reported that the FBI used this vulnerability to extract Signal messages from a device seized in a criminal case. The suspect in the case used Signal to communicate. Signal is encrypted end-to-end and attempts not to store retrievable data on the device itself. However, Signal may display a notification on the screen whenever a new message is received. These notifications may include the sender's username and some of the message's content. Signal used Apple's Notification Services framework to generate these notifications, and iOS did not delete their contents even when they were marked for deletion.
The use of OS libraries and APIs like that has caused problems before, as they may not be designed with the same threat model in mind as the one used to create secure messaging applications.
--
Johannes B. Ullrich, Ph.D. , Dean of Research, SANS.edu
Twitter|
如有侵权请联系:admin#unsafe.sh