Pegasus was, surprisingly, patched in 5.5.2, so we're exploring other potential webkit vulns.
Starting investigation using: https://bugs.chromium.org/p/project-zero/issues/detail?id=1262
to review: https://bugs.chromium.org/p/project-zero/issues/detail?id=1256 https://bugs.chromium.org/p/project-zero/issues/detail?id=1249
https://bugs.chromium.org/p/project-zero/issues/detail?id=1101
https://bugs.chromium.org/p/project-zero/issues/detail?id=1109
https://bugs.chromium.org/p/project-zero/issues/detail?id=1105
https://bugs.chromium.org/p/project-zero/issues/detail?id=1090
https://bugs.chromium.org/p/project-zero/issues/detail?id=1082
https://bugs.chromium.org/p/project-zero/issues/detail?id=1080
https://bugs.chromium.org/p/project-zero/issues/detail?id=1085
https://bugs.chromium.org/p/project-zero/issues/detail?id=999
https://bugs.chromium.org/p/project-zero/issues/detail?id=1044
http://www.phrack.org/papers/attacking_javascript_engines.html
https://bugs.chromium.org/p/project-zero/issues/detail?id=862
https://github.com/tunz/js-vuln-db/blob/master/jsc/CVE-2017-2491.md
https://bugs.chromium.org/p/project-zero/issues/detail?id=1173
https://bugs.chromium.org/p/project-zero/issues/detail?id=1220
https://bugs.chromium.org/p/project-zero/issues/detail?id=1165
https://github.com/Fire30/PS4-2014-1303-POC/blob/master/ps4sploit.html