23.12.2024

Apple has released iOS 14.8 and macOS 11.6. Updates close serious vulnerabilities on dozens of devices

At the same time, they closed the iPad and Apple Watch security holes. -serjoznye-ujazvimosti-na-desjatkah-ustrojstv-630e89e.png” alt=”Apple has released iOS 14.8 and macOS 11.6. Updates close serious vulnerabilities on dozens of devices” />

a number of intermediate updates of still up-to-date firmware: iOS 14.8, iPadOS 14.8, watchOS 7.6.2 and macOS Big Sur 11.6. They close critical vulnerabilities in iPhone, iPad, Apple Watch and Mac that hackers could use to obtain data from unsuspecting users.

These vulnerabilities are present in CoreGraphics and WebKit rendering systems. The first affects the Apple Watch Series 3, iPhone 6s, iPad Air 2, iPad 5, iPad mini 4 and older, as well as iPod touch 7 and all Macs that run on Big Sur. The WebKit bug affects the same list of devices, with the only exception being the Apple Watch.

The CoreGraphics bug, discovered by cybersecurity experts, can lead to arbitrary code execution if an infected PDF document is opened on the device. It can be used, in particular, to bypass the BlastDoor protection that processes iMessage data. The WebKit vulnerability is exploited in a similar way.

In other words, upgrading to iOS/iPadOS 14.8, watchOS 7.6.2 and macOS Big Sur 11.6 is worth every user. If you have auto-update installed, you probably already got the new version.