Apple is rolling out a large number of security updates across its product line, including two emergency fixes for older devices addressing vulnerabilities being exploited by bad actors in the wild.
This week’s updates patch known security holes in almost every “domestic” product sold by Apple.
iOS 17.2 is now officially the newest version available to most iPhones and iPads. It addresses around a dozen security flaws – some more serious than others – but none of the bugs are known to be exploited.
Owners of older-generation iDevices are treated to iOS 16.7.3, which does include fixes for known weaknesses abused by threat actors.
Tracked as CVE-2023-42917 and CVE-2023-42916, the WebKit flaws were discovered and reported to Apple a while ago by Clément Lecigne of Google's Threat Analysis Group, whose work often involves fighting commercial spyware.
The two issues were addressed in iOS 17.1.2 on new-generation devices. Now Apple is making sure everyone is safe from potential compromise by patching older hardware whose software caps at iOS 16.
The same vulnerabilities are also exploitable in Apple TV and Apple Watch devices, for which tvOS 17.2 and watchOS 10.2 are made available to close the holes.
Dozens more security flaws are addressed in Safari 17.2, macOS Sonoma 14.2, macOS Ventura 13.6.3, and macOS Monterey 12.7.2 – again, some more serious than others, but none considered zero-day or actively exploited in the wild.
While most attacks on Apple platforms are highly targeted, it’s important to deploy the latest security patches issued by the Cupertino tech giant as early as possible. Consider using a dedicated security solution on your Mac or iPhone as well.
tags
Filip has 15 years of experience in technology journalism. In recent years, he has turned his focus to cybersecurity in his role as Information Security Analyst at Bitdefender.
View all postsNovember 14, 2024
September 06, 2024