Email or username:

Password:

Forgot your password?
Xe :verified:

hey uhhhhhhh, you should update your apple devices: support.apple.com/en-us/HT2137

>

An app may be able to execute arbitrary code with kernel privileges

Processing an image may lead to arbitrary code execution

An app may be able to leak sensitive kernel state

An app may be able to gain root privileges

An app may be able to execute arbitrary code with kernel privileges

An app may be able to modify protected parts of the file system

A remote attacker may be able to cause unexpected app termination or arbitrary code execution

Processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been actively exploited.

Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

24 comments
Kye Fox

@cadey I moved up to a new iPhone, but it's nice to see I'd still get security patches for my 6S Plus even though it's officially out of support. edit: I assume this is related to a similarly severe patch for iOS 16+

Xe :verified:

@Kye with apple, "out of support" doesn't mean they don't get updates, they just don't get new version upgrades. Apple has released security updates for iOS 9 in the past.

Kye Fox

@cadey The 6S was my first, and no one I asked could answer if it would still get security updates.

Jimmy Jim

@cadey @Kye Apple does backport updates, but itβ€˜s no panacea. From what I’ve seen they tend to β€œtriage” and patch critical bugs, and it often (tho not in this case) comes out quite a bit later than the iOS 16 update.

Xe :verified:

@starchturrets @Kye it's better than the situation with Android lol

Jimmy Jim

@cadey @Kye yes. The situation on Android has been improving, but iOS still tends to get OS upgrades for longer before they need to get fixes backported, so it evens out in the end.

miifox
@cadey all i am thinking about is... could this be used for jailbreaking?
dxzdb

@cadey why is this only talking about iOS 15?

(((Jann Gobble)))πŸ³οΈβ€πŸŒˆ

@cadey Are you sure this link is the one you meant to send? 16.5 is the iOS update version being distributed by the app store and this is talking about 15.7.6...

:blobcatlaptop: gravitos :blobcatcomfsip:​

@cadey

>

An app may be able to execute arbitrary code with kernel privileges

isn't that a good thing? in theory, if i had an apple device, this would mean i can run android on it

Xe :verified:

@gravitos not if your threat model depends on webpages NOT doing that

Go Up