If an app uses Jemalloc to manage space, there’s a security gap if you run Yosemity. Famouse apps using Jemalloc are e.g. Firefox and Thunderbird. So if you want to know you’re affected or not, just take a look at the /tmp dir and watch out for files like CGLog_Thunderbird* or CGLog_Firefox*.
I’m affacted and I wanted to know what mail content was logged. So here’s an example how sweet and easy groovy can handle jobs like that, including some code that cleans up the un-readable chars.
|
1 2 3 4 5 6 |
def f = new File("/Users/username/tmp/CGLog.txt") new File("/tmp/CGLog_Thunderbird_123456").readLines().each { String line -> line.eachMatch(~/KeyDown.*char ([0-9]*);/) { f << String.valueOf((char) (it[1] as Integer)).replaceAll("[\uF700-\uF72F]", "").replaceAll('\r','\n') } } |