Skip to content?
BACK
22-Aug-2022

Update your Apple devices now!

Apple has released important updates for its products, including iPhones and iPads, in response to a security issue.

Apple has released iOS 15.6.1 and iPadOS 15.6.1. It states only that the update “provides important security updates and is recommended for all users.”

The Apple support site provides details of the changes and recommends all iPhone and iPad users update their devices as soon as possible.

There are two vulnerabilities addressed, according to Apple. A Kernel issue described as “an application may be able to execute arbitrary code with kernel privileges,” along with a WebKit issue described as “processing maliciously crafted web content may lead to arbitrary code execution.”

Apple said it is aware of reports that the issue may have been actively exploited. Here are the security notes for the update:

Kernel

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)

Impact: An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.

Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2022-32894: an anonymous researcher

WebKit

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)

Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

Description: An out-of-bounds write issue was addressed with improved bounds checking.

WebKit Bugzilla: 243557
CVE-2022-32893: an anonymous researcher

If you use an Apple device, simply use the Settings app, go to General and click on the available software update (iOS 15.6.1 or iPadOS 15.6.1).

If you have any questions about the process, or about other security risks with your technology, please contact our Technology team on 1300 764 200 or email cybersecurity@hoodsweeney.com.au.

Share on LinkedIn Share on Facebook
Menu