About the security content of Safari 17.4 – Apple Support

March 7, 2024 at 02:15PM Summary: Multiple security issues (CVE-2024-23273, 23252, 23254, 23263, 23280, 23284) were addressed with improved state management, memory handling, UI handling, and validation in WebKit. These issues impact Safari Private Browsing and could result in unauthorized access to private tabs, denial-of-service, audio data exfiltration, and user fingerprinting. Updates are available for … Read more

About the security content of watchOS 10.4 – Apple Support

March 7, 2024 at 01:51PM Apple released a security update to address multiple vulnerabilities in various products, including CoreBluetooth, ImageIO, Kernel, libxpc, MediaRemote, Messages, RTKit, Sandbox, Share Sheet, Siri, UIKit, WebKit. The update is available for Apple Watch Series 4 and later. These vulnerabilities may allow various exploits, including access to sensitive user data and … Read more

About the security content of tvOS 17.3 – Apple Support

January 22, 2024 at 01:42PM Summary: Apple has released updates addressing multiple security vulnerabilities impacting products such as Apple Neural Engine, CoreCrypto, Kernel, NSSpellChecker, TCC, Time Zone, and WebKit. These vulnerabilities could potentially lead to arbitrary code execution, unauthorized access to sensitive data, and other security risks. From the provided meeting notes, it is clear … Read more

About the security content of macOS Monterey 12.7.3 – Apple Support

January 22, 2024 at 01:42PM The Apple ID HT214057 released on 2024-01-22 addresses several CVEs for macOS Monterey, including a privacy issue with improved data redaction, a memory handling improvement, and updates for multiple issues in curl, ImageIO, Mail Search, and WebKit. These updates mitigate potential risks of app access to sensitive data and arbitrary … Read more

About the security content of iOS 17.3 and iPadOS 17.3 – Apple Support

January 22, 2024 at 01:42PM Summary: Multiple CVEs are addressed, including memory handling, timing side-channel issues, redaction of sensitive information, and improved handling of files. Updates are available for various products, such as Apple Neural Engine, CoreCrypto, Kernel, Mail Search, NSSpellChecker, etc., impacting devices like iPhone XS and later, iPad Pro, and more. From the … Read more

About the security content of macOS Sonoma 14.3 – Apple Support

January 22, 2024 at 01:42PM Several security issues have been addressed in the Apple Neural Engine, CoreCrypto, Finder, Kernel, LLVM, Mail Search, NSSpellChecker, Safari, Shortcuts, TCC, Time Zone, and WebKit on macOS Sonoma. Improvements include memory handling, handling of sensitive data, and access restrictions. These updates are crucial to prevent potential data breaches and arbitrary … Read more

About the security content of Magic Keyboard Firmware Update 2.0.6 – Apple Support

January 11, 2024 at 09:07AM A session management issue (CVE-2024-0230) impacting Bluetooth accessories was addressed with improved checks. The update, released on January 9, 2024, mitigates the risk of attackers extracting Bluetooth pairing keys and monitoring traffic. Affected products include various Magic Keyboards, with an available update to address the issue. Based on the meeting … Read more

About the security content of macOS Sonoma 14.2.1 – Apple Support

December 19, 2023 at 01:42PM Summary: Apple released an update on December 19, 2023, addressing a session rendering issue (CVE-2023-42940) that could cause users sharing their screen to inadvertently share incorrect content. The update is available for macOS Sonoma, specifically targeting the affected product, WindowServer. Based on the meeting notes provided, the key points are … Read more

Apple Testing New Stolen Device Protection Feature for iPhones

December 13, 2023 at 10:48AM Apple is testing a new Stolen Device Protection feature in iOS 17.3 beta to prevent iPhone theft. The feature includes Face ID verification for saved passwords and a security delay for various actions, triggered by biometric authentication checks, except in familiar locations. Interested users can enable the feature from the … Read more

About the security content of iOS 16.7.3 and iPadOS 16.7.3 – Apple Support

December 11, 2023 at 01:45PM Several security vulnerabilities have been addressed in Apple’s products, including issues with sensitive data redaction, memory handling, and potential code execution. Demonstrating a wide-reaching impact, vulnerabilities affect various products such as Accounts, AVEVideoEncoder, Find My, ImageIO, Kernel, and WebKit for specific Apple devices. Updates are available for relevant device models. … Read more