Apple launched yesterday iOS 16.5.1 and its iPad counterpart, iPadOS 16.5.1. The updates repair a problem that forestalls charging with the Lightning to USB 3 Digital camera Adapter, however in addition they tackle two zero-day vulnerabilities which will have already been exploited by attackers.
First, Apple mounted a Kernel vulnerability which will enable apps to execute arbitrary code with kernel privileges. “Apple is conscious of a report that this challenge might have been actively exploited towards variations of iOS launched earlier than iOS 15.7,” the corporate defined yesterday.
Apple additionally mounted a WebKit vulnerability which will result in arbitrary code execution from attackers. As a result of WebKit is the one rendering engine Apple permits on iOS, the safety implications of this arbitrary restriction will be fairly critical. Apple didn’t focus on at WWDC if iOS 17 will lastly enable third-party internet browsers to make use of different rendering engines, however each Google and Mozilla are already making ready for this transformation.
Apple additionally launched macOS Ventura 13.4.1 and watchOS 9.5.2 yesterday to handle the identical safety vulnerabilities. The corporate additionally launched safety updates for iOS 15, iPadOS 15, macOS Monterey, macOS Large Sur, and watchOS 8.
Final however not least, the second developer betas of iOS 17 and iPadOS 17 had been additionally launched yesterday. New options embody the power to faucet two iPhones collectively to share content material through AirDrop, a slider to regulate crossfade in Apple Music, and Stage Supervisor enhancements.