Headline
Apple Security Advisory 05-13-2024-3
Apple Security Advisory 05-13-2024-3 - iOS 16.7.8 and iPadOS 16.7.8 addresses bypass vulnerabilities.
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-05-13-2024-3 iOS 16.7.8 and iPadOS 16.7.8iOS 16.7.8 and iPadOS 16.7.8 addresses the following issues.Information about the security content is also available athttps://support.apple.com/HT214100.Apple maintains a Security Releases page athttps://support.apple.com/HT201222 which lists recentsoftware updates with security advisories.FoundationAvailable for: iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation,iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generationImpact: An app may be able to access user-sensitive dataDescription: A logic issue was addressed with improved checks.CVE-2024-27789: Mickey Jin (@patch1t)RTKitAvailable for: iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation,iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generationImpact: An attacker with arbitrary kernel read and write capability maybe able to bypass kernel memory protections. Apple is aware of a reportthat this issue may have been exploited.Description: A memory corruption issue was addressed with improvedvalidation.CVE-2024-23296This update is available through iTunes and Software Update on youriOS device, and will not appear in your computer's Software Updateapplication, or in the Apple Downloads site. Make sure you have anInternet connection and have installed the latest version of iTunesfrom https://www.apple.com/itunes/ iTunes and Software Update on thedevice will automatically check Apple's update server on its weeklyschedule. When an update is detected, it is downloaded and the optionto be installed is presented to the user when the iOS device isdocked. We recommend applying the update immediately if possible.Selecting Don't Install will present the option the next time youconnect your iOS device. The automatic update process may take up toa week depending on the day that iTunes or the device checks forupdates. You may manually obtain the update via the Check for Updatesbutton within iTunes, or the Software Update on your device. Tocheck that the iPhone, iPod touch, or iPad has been updated: *Navigate to Settings * Select General * Select About. The versionafter applying this update will be "iOS 16.7.8 and iPadOS 16.7.8".All information is also posted on the Apple Security Releasesweb site: https://support.apple.com/HT201222.This message is signed with Apple's Product Security PGP key,and details are available at:https://www.apple.com/support/security/pgp/-----BEGIN PGP SIGNATURE-----iQIzBAEBCAAdFiEEsz9altA7uTI+rE/qX+5d1TXaIvoFAmZCrxIACgkQX+5d1TXaIvrKgxAAjiI4N+H3dHj/1ev1GXuaZRhbSicl8Uv0H/zXt/7dmQVgzdie4YnFehUioBcx4E17yecsCV1fcg8jFui7vYuxxxwbVRCZbJ6757rVoFLadDOkbHi3F6pIIza5oaOfmNsriL8pHBjIalwWsZGlUPNGU9LTykaQA5cUjdA0xzFSd8u5H7DSKfND2aoi8q/5xhFaH3txr61FVqpsdcvsyWSfLRKjaB7i+rNijrgVQnFTSrMiiAOYA9HRNM9JGPFO6BDF/wfVJz55bD0MB0nHtRiDc7LzhhhnPtl6fbjMDLO+k3T7x0pxlZDd0k4Vxy93deTaBiLlTa0UdnBzPmMbTUZXxlICzPeAqnWZXwwDqzu+LAxLcNtKI7IZrWqr4FCQpgkIsrM1LP7Zuc1bXyx5Hflw2vg/eBGwnjH+zxoYqQnjGVy5S7JMan2PRYkeShP8JhHC4ZY3RC3Ta2oQFwOfK6wxIgM0+0zHlOA4bj0AppmzxJqcMmK4XOAbe1alIErzPS43CofElYSBswiCPVPCgQ2qrgP3pHrQFCqnVh37YEdCpc1ocB3ZUYgsURzIxruf6MVbUOrXhvQ8DwH53A/zopEcvdnYgI+nfS9G1cyTPil8FnV6XSCEBcdwov8HctE2V+84WaM/GfBMIY1gXJtVXuNz/GhBJEvDCzvKFBuIaV0H1bw==YjT5-----END PGP SIGNATURE-----
Related news
Apple Security Advisory 05-13-2024-6 - macOS Monterey 12.7.5 addresses an issue where a malicious application may be able to access Find My data.
Apple Security Advisory 05-13-2024-5 - macOS Ventura 13.6.7 addresses bypass vulnerabilities.
Apple Security Advisory 05-13-2024-5 - macOS Ventura 13.6.7 addresses bypass vulnerabilities.
Plus: Microsoft patches over 60 vulnerabilities, Mozilla fixes two Firefox zero-day bugs, Google patches 40 issues in Android, and more.
Apple Security Advisory 03-07-2024-7 - visionOS 1.1 addresses buffer overflow, bypass, code execution, and out of bounds read vulnerabilities.
Apple Security Advisory 03-07-2024-6 - tvOS 17.4 addresses buffer overflow, bypass, and code execution vulnerabilities.
Apple Security Advisory 03-07-2024-5 - watchOS 10.4 addresses buffer overflow, bypass, and code execution vulnerabilities.
Apple and Microsoft recently released software updates to fix dozens of security holes in their operating systems. Microsoft today patched at least 60 vulnerabilities in its Windows OS. Meanwhile, Apple's new macOS Sonoma addresses at least 68 security weaknesses, and its latest updates for iOS fixes two zero-day flaws.
Apple has released a security update for iOS and iPadOS to patch two zero-day vulnerabilities which are reported to already have been exploited.