November 19, 2024 at 04:54PM Apple addressed two vulnerabilities in Safari 18.1.1 for macOS Ventura and Sonoma, released on November 19, 2024. CVE-2024-44308 involves arbitrary code execution from malicious web content, while CVE-2024-44309 relates to cross-site scripting attacks. Both issues may have been actively exploited on Intel-based Mac systems. ### Meeting Notes Summary **Release Information** … Read more
October 28, 2024 at 12:06PM On October 28, 2024, an update for macOS Ventura 13.7.1 was released addressing multiple security vulnerabilities (CVE-2024-44255, CVE-2024-44270, etc.). Improvements included better validation and checks to prevent unauthorized access, data leaks, memory corruption, and file system modifications, enhancing overall system security for users. **Meeting Takeaways: Security Updates for macOS Ventura … Read more
October 4, 2024 at 08:05AM Apple has addressed two security bugs in iOS 18.0.1 and iPadOS 18.0.1. One bug may read users’ saved passwords aloud, posing a risk to the visually impaired. Another bug affects iPhone 16’s audio capture in iMessage, capturing audio before indicating recording. Apple urges users to apply the latest update for … Read more
September 18, 2024 at 12:29PM Apple has paused the rollout of iPadOS 18 on iPad Pro tablets with the M4 chip due to reports of the update “bricking” devices, leaving affected users unable to turn them on. Apple noted the issue affects a small number of devices and is working to resolve it, advising users … Read more
June 26, 2024 at 06:57AM Apple has released a firmware update addressing an authentication issue affecting various headphone models, allowing potential unauthorized access. The vulnerability could enable eavesdropping on private conversations. Additionally, a logic flaw in visionOS has been patched to prevent a denial-of-service attack. This comes after the rollout of updates to address 21 … Read more
May 23, 2024 at 01:27PM Security researchers reverse-engineered Apple’s iOS 17.5.1 update, revealing a bug causing deleted images to reappear. Despite widespread concerns, Apple remained silent. The update fixed the bug, easing privacy worries. Researchers identified changes in the update, which revealed the bug’s cause. Apple’s silence prompted speculation about data policies. BleepingComputer’s attempts to … Read more
March 5, 2024 at 04:39PM Summary: Apple released an update on 2024-03-05 addressing a memory corruption issue (CVE-2024-23225) in the kernel, which could enable an attacker to bypass kernel memory protections. The affected products include iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generation. The … Read more