Apple releases two urgent security fixes:

  • It has been past a week when Apple released iOS 14.5 featuring new App tracking transparency framework, AirTag support, new Siri voices, new emojis, and many other excitements.
  • But to their utmost surprise the new iOS also featured a critical bug in its App Tracking Transparency which is denoted to be one of the two serious security issues which aren’t theoretical but can definitely lead to potential real-world issues.
  • To this, Apple immediately released an urgency to all the Apple users on Tuesday, and highly recommended to download and install the latest updates at the earliest.
  • This latest software update by Apple covers older devices compatible to iOS version 12.5.3 such as iPhone 5s, 6, 6 Plus; iPad Air, mini, mini-2, mini-3; and iPod touch 6th generation; iOS 14.5.1 and iPadOS 14.5.1 for iPhone 6s and future models; iPad Pro (all models), Air 2 (and future models), 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).
  • The update is also applicable to watchOS 7.4.1 that can be downloaded on Apple Watch Series 3 and later, while macOS Big Sur 11.3.1 is for macOS Big Sur.
  • Apple in its support pages describes the issue as a “processing maliciously crafted web content that can lead to arbitrary code execution”.
  • The first vulnerability was caused by a memory corruption issue, while the second was rooted in an integer overflow.
  • The second flaw followed the same source and it caused an integer overflow. Here, also for this issue, Apple fixes the older iPhones that might have caused a buffer overflow issue, and a use after free issue.
  • Apple recalls this issue in its blog page and explains that it is aware of reports that could have caused vulnerabilities to Apple devices and later actively exploiting into the wild.
  • To get the update, head to Settings > General > Software Update on your iPhone or iPad.
  • To protect yourself against the exploits, it is necessary for all the Apple users to update their Apple gadgets at the earliest convenience that is as quickly as possible because the update doesn’t provide any further details that is exactly how many people might have affected due to these issues, and that ‘You’ may or may not be the luck one.

Leave a Reply

Your email address will not be published. Required fields are marked *