About the security content of iOS 18.2 and iPadOS 18.2 – Apple Support

December 11, 2024 at 01:33PM Apple’s iOS 18.2 and iPadOS 18.2 address multiple security vulnerabilities with improved checks and memory handling. Notable risks include potential unauthorized access to private information, memory corruption, and sensitive data leaks. Updates are available for iPhone XS and later, various iPad models, enhancing overall system security. ### Meeting Notes Summary … Read more

About the security content of iPadOS 17.7.3 – Apple Support

December 11, 2024 at 01:33PM Apple’s iPadOS 17.7.3 update, releasing on December 11, 2024, addresses multiple vulnerabilities (CVE-2024-44201, CVE-2024-54486, among others) affecting iPad Pro 12.9-inch (2nd gen), iPad Pro 10.5-inch, and iPad 6th gen. Issues include memory disclosure, kernel state leakage, denial of service, and unexpected crashes. ### Meeting Notes Summary **Apple ID**: 121838 **Release … Read more

About the security content of macOS Sonoma 14.7.2 – Apple Support

December 11, 2024 at 01:33PM Multiple vulnerabilities were identified in macOS Sonoma 14.7.2, impacting user data access, kernel privileges, and sandbox security. Updates addressing various issues, including logic, path handling, memory management, and permissions, have been released to mitigate risks. Users are encouraged to install the latest security updates. ### Meeting Takeaways on macOS Sonoma … Read more

About the security content of macOS Ventura 13.7.2 – Apple Support

December 11, 2024 at 01:33PM On December 11, 2024, Apple is releasing updates for macOS Ventura 13.7.2, addressing various vulnerabilities (CVE-2024-54477, CVE-2024-54527, etc.) that could allow apps to access sensitive data or execute arbitrary code. Improved checks and validations were implemented for better security measures. ### Meeting Takeaways #### Release Details: – **Apple ID**: 121842 … Read more

About the security content of watchOS 11.2 – Apple Support

December 11, 2024 at 01:33PM Multiple vulnerabilities in watchOS 11.2, identified as CVE-2024-54526, CVE-2024-54527, CVE-2024-54513, and others, have been addressed through improved checks, added restrictions, and better memory handling. These may allow unauthorized access to private information or sensitive user data. Updates are available for Apple Watch Series 6 and later. ### Meeting Takeaways: 1. … Read more

About the security content of tvOS 18.2 – Apple Support

December 11, 2024 at 01:33PM On December 11, 2024, Apple will release updates for tvOS 18.2, addressing multiple security vulnerabilities. Issues include improved checks and memory handling to prevent unauthorized access to sensitive data and potential memory corruption. The updates apply to Apple TV HD and Apple TV 4K models. ### Meeting Notes Summary **Apple … Read more

Android’s December 2024 Security Update Patches 14 Vulnerabilities

December 4, 2024 at 07:02AM Google released December 2024 security updates for Android, addressing 14 high-severity vulnerabilities, including a critical remote code execution flaw. The updates cover Android versions 12 through 15. Users are encouraged to update devices promptly, as no exploitation is reported. No security updates were included for Android Automotive OS and Wear … Read more

Oracle warns of Agile PLM file disclosure flaw exploited in attacks

November 19, 2024 at 03:00PM Oracle has addressed a critical unauthenticated file disclosure vulnerability (CVE-2024-21287) in its Agile PLM software, which was exploited as a zero-day. Users are urged to update immediately to prevent unauthorized file access. The flaw was reported by CrowdStrike and has a CVSS score of 7.5. **Meeting Takeaways:** 1. **Vulnerability Identified**: … Read more

iPhones now auto-restart to block access to encrypted data after long idle times

November 11, 2024 at 07:19PM Apple’s iOS 18.1 update introduces a security feature that automatically reboots iPhones after extended idle times. This process re-encrypts data, enhancing protection against unauthorized access and making it more challenging to extract sensitive information. **Meeting Notes Takeaways:** 1. **New Security Feature**: Apple has introduced a new security feature with the … Read more

Google Patches Critical Chrome Vulnerability Reported by Apple

October 30, 2024 at 05:32AM Google has addressed a critical vulnerability in Chrome (CVE-2024-10487), while Mozilla has resolved high-severity issues in Firefox. The updates ensure enhanced security for users of both browsers, following the report of the Chrome vulnerability by Apple. **Meeting Takeaways:** 1. **Patch Released for Chrome Vulnerability:** – Google has addressed CVE-2024-10487, classified … Read more