Apple releases a security update for WebKit flaws

0
0



Apple released a series of security updates on Monday to counter hackers who are actively exploiting two flaws affecting some later-generation iPhones, as well as a whole host of iPad and iPod models.

According to the Arab Technology News Portal, the company said: The update includes a fix through improved management of one of the CVE-2021-30665 defects, which is a memory corruption problem, which was allowing hackers to arbitrarily execute code across victims’ devices.

Another flaw was CVE-2021-30663, which Apple fixed through improved input validation for third parties to also execute arbitrary code.

Both issues affected WebKit, which is Apple’s framework that displays most of the web content you see on your device (unless you use Chrome or Firefox on the Mac OS).

The company acknowledged that there were reports that hackers were exploiting both problems in order to penetrate victims’ devices, but it did not specify which hackers exploited the security flaws.

This is the latest vulnerability cleanup that Apple has had to deal with in the past several months.

Last week, the company sent a security update that addressed a logic error that allowed hackers to target users via malicious apps in a way that bypassed Apple’s security protections.

Recently researchers also discovered hackers targeting Apple developers with malware in addition to a flaw that was leaking email addresses from AirDrop.

The models affected by the security fix include all iPad Pro models, iPad Air 2 and later, iPad 5th generation and later, iPad Mini 4 and later, iPod touch 7th generation, and iPhone 6s and later.

And if you have an older device, such as an iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad Mini 2 and 3 iPad Mini, or iPod touch (6th generation), the company has also released iOS 12.5.3, which addresses WebKit flaws. .

The company has also released updates that correct the buffer overflow issue and the memory corruption error-free issue.

The company said: To protect our customers, we do not disclose, discuss or confirm security issues until an investigation is conducted and corrections or releases are available, and the latest versions are listed on the Apple Security Updates page.



LEAVE A REPLY

Please enter your comment!
Please enter your name here