Apple has as soon as once more launched a patch for a possible important flaw affecting the iPhone 5s, iPhone 6, and older iPads — fashions for which it hardly ever offers safety.
Together with patches in iOS 16.Three and macOS Ventura this week, Apple launched a uncommon patch within the iOS 12.5.7 replace to guard iOS units that could not improve to iOS 15 when it was launched in September 2021. These embrace the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod contact (sixth technology).
The replace addresses a bug that may be exploited remotely to realize arbitrary code execution on an affected iPhone or iPad simply by main a sufferer’s browser to a maliciously crafted internet web page or internet content material.
“Apple is conscious of a report that this concern could have been actively exploited in opposition to variations of iOS launched earlier than iOS 15.1,” it mentioned in launch notes regarding the bug, which is tracked as CVE-2022-42856.
Additionally: What’s Safety Keys for Apple ID and why does it matter?
It was reported by Clément Lecigne of Google’s Menace Evaluation Group, the group that tracks state-sponsored and different superior menace exercise.
Apple patched the identical flaw in iOS 16.1.2 on November 30, after which in macOS Ventura 13.1 and iOS 16.2 in mid-December.
It is not the primary time in current reminiscence that Apple has backported patches for variations of iOS it does not recurrently patch. Apple launched iOS 12.5.6 on the finish of August, precisely a yr after iOS 15’s launch, to handle one other distant code execution flaw (CVE-2022-32894) that was additionally being actively exploited on the time.
This text was initially printed by zdnet.com. Learn the unique article right here.
Comments are closed.