About the security content of iOS 16.7.7 and iPadOS 16.7.7 – Apple Support

About the security content of iOS 16.7.7 and iPadOS 16.7.7 - Apple Support

March 25, 2024 at 01:54PM

Summary:
Apple released an update on March 21, 2024, addressing CVE-2024-1580, an out-of-bounds write issue in CoreMedia and WebRTC. The update is available for various iPhone and iPad models. The issue could lead to arbitrary code execution when processing images due to improved input validation.

From the meeting notes, I have gathered the following takeaways:

– Apple has released an update (HT214098) with a release date of 2024-03-21 to address CVE-2024-1580.
– The update addresses an out-of-bounds write issue with improved input validation for the affected products: CoreMedia and WebRTC.
– The impact of the issue is that processing an image may lead to arbitrary code execution.
– The update is available for the following devices: iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generation.

Please let me know if there’s anything else you need.

Full Article