Header Ads Widget

Apple releases iOS 12.5.4 security update for older devices

admin August 20, 2021

Apple has released an iOS 12.5.4 security update for older devices that patches three vulnerabilities — two of which may have been exploited in the wild.

Apple releases security-focused updates for older devices to fix any number of problems found in the software. Older devices may be incapable of receiving new features associated with recent releases, but these updates keep users of those devices safe.

The company’s security website says that there are two WebKit vulnerabilities and a certificate vulnerability that have been patched. Apple says that the WebKit vulnerabilities may have been actively exploited in the wild.

Release notes read as follows:

Security

  • Impact: Processing a maliciously crafted certificate may lead to arbitrary code execution
  • Description: A memory corruption issue in the ASN.1 decoder was addressed by removing the vulnerable code.
  • CVE-2021-30737: xerub

WebKit

  • Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
  • Description: A memory corruption issue was addressed with improved state management.
  • CVE-2021-30761: an anonymous researcher

WebKit

  • Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
  • Description: A use after free issue was addressed with improved memory management.
  • CVE-2021-30762: an anonymous researcher

The update is available for iPhone 5s, iPhone 6, iPhone 6s Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).

Users can install these updates by navigating to Settings, General, then Software Update. Connect the iPhone or iPad to power then tap install to complete the update.

Stay on top of all Apple news right from your HomePod. Say, “Hey, Siri, play AppleInsider,” and you’ll get the latest AppleInsider Podcast. Or ask your HomePod mini for “AppleInsider Daily” instead and you’ll hear a fast update direct from our news team. And, if you’re interested in Apple-centric home automation, say “Hey, Siri, play HomeKit Insider,” and you’ll be listening to our newest specialized podcast in moments.

Tags:

Post a Comment

0 Comments