By: 08Tc3wBB
Voice Control is a powerful feature introduced by Apple in iOS 13 and macOS Catalina. It acts as a substitute for all the touch gestures on the screen, letting you interact with the device using your voice to tap, swipe, type, and more.
com.apple.SpeechRecognitionCore.speechrecognitiond Crashes
com.apple.SpeechRecognitionCore.speechrecognitiond is a system XPCService process that handles voice control.
During an investigation of ZecOps Mobile XDR / Mobile DFIR, we discovered a series of crashes that appears intriguing:
Exception Type: EXC_BAD_ACCESS (SIGBUS)
Exception Subtype: EXC_ARM_DA_ALIGN at 0x0074616f6c460003
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Subtype: KERN_INVALID_ADDRESS at 0x2000002400000000 -> 0x0000002400000000
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Subtype: KERN_INVALID_ADDRESS at 0x00000000100c02d8
Mobile Device Investigation Analysis
Not all crashes are the same, but they all have a similar pattern.
Continue reading Use-After-Free in Voice Control: CVE-2021-30902 Write-up at ZecOps Blog.