AMFI/amfid entitlements check bypass, iOS sandbox escape.
Patched in iOS 13.5 beta 3.
Write-up here.
This repo also contains a tool I called plparse, that can be used to invoke three different XML/plist parsers present on macOS & iOS. Build with:
make
And run as:
plparse -c file.plist
plparse -i file.plist
plparse -x file.plist
plparse -cix file.plist
MPL2 with Exhibit B.