A potentially serious security flaw has been found in iOS and Apple's WebKit web browser software. It is recommended that all iPhone users update to iOS 15.6.1 immediately to fix the issue. The same issues affect most Apple software, including iPadOS and macOS. Apple hasn't released many details, giving users time to update before more bad actors get details they could use to exploit it. But Apple says it "is aware of a report that this issue may have been actively exploited." Presumably this means an advanced attacker, such as a state, may have already used this zero-day exploit on a high-profile target. Most users are not at risk yet, but that could change quickly as details emerge. The issue is an "out-of-bounds [memory] write issue" that gives an application the ability "to execute arbitrary code with kernel privileges". Basically, it's one of the more serious security issues you can find in modern software. The issue was reported to Apple by an anonymous researcher.
from Phone Scoop - Latest News https://ift.tt/AnIH3s1
No comments:
Post a Comment