@bryanjclark this is such a fascinating exploit if it uses server-based passkit push updates to deliver compromised payloads that don't get handled by blastdoor until it's too late. i would imagine the problem is that images require a non-finite amount of space after decompression but that some cleverly compressed regions can exhaust the amount of memory allocated and allow you to traipse over old dylib code that executes at a higher privilege level. my understanding is that blastdoor prevents this for most data that comes in from imessage, but probably older codepaths are still vulnerable (i'm guessing lockdown mode just nixes all features that don't route initially through blastdoor)