> If a smartphone application exploits an image rendering or
> font library, it doesn't gain any additional permissions.
> It can't do anything with a vulnerable library that it
> couldn't do otherwise.
Haven't phones on both platforms been rooted via local exploits, just like the ones you describe?
> The important attack surface on smartphones is local kernel exploits, which are rare.
The important attack surface on Chrome is sandbox model exploits, which are rare.
Haven't phones on both platforms been rooted via local exploits, just like the ones you describe?
> The important attack surface on smartphones is local kernel exploits, which are rare.
The important attack surface on Chrome is sandbox model exploits, which are rare.