Tuesday, January 21, 2025
Latest news
Xi Jinping’s anti-corruption drive targets record number of ‘tigers’ this year Diamonds are plunging in value around the world. Is China to blame? Single Chinese women fake baby bump photos to capture crucial moments before ageing The Amul model should be tried across all agricultural crops in India ’Reschedule UGC NET date’: DMK expresses concern over clash of exam with Pongal, writes letter to Ed... Badminton icon PV Sindhu to marry fiance Venkata Datta today in Udaipur | In China, fib online and find out Trump says he might demand Panama hand over canal Chhoti bahu Radhika Merchant shares car ride home with Mukesh Ambani after DAIS annual function. Wat... Bounce and bruises: India batters face variable challenges at MCG nets | Cricket News Manu Joseph: Escaping India within India is an exorbitant exercise Politics News Today Live Updates on December 22, 2024: Mallikarjun Kharge slams Modi govt for 'erosi... Mallikarjun Kharge slams Modi govt for ’erosion’ of ECI integrity after Centre amends election rules Green forest fire alert in Ghana Xi Jinping’s anti-corruption campaign nets record number of ‘tigers’ in 2024 'Faster walkers' had significantly lower risk of diabetes, hypertension: Study, ET HealthWorld GST panel puts off call on lower rates for insurance, ET HealthWorld Rohit Sharma can still be extremely dangerous at No. 6: Ravi Shastri | Cricket News Ahmed Musa scores late winner as Kano Pillars edge Niger Tornadoes Get geo-savvy: Let’s use today’s geopolitical chaos to uplift India’s economy 'Playing with fire': China warns US over military aid to Taiwan Arunachal committed to support GST reforms for economic growth: Deputy CM Amazon Prime Video cracks down: Password sharing changes coming in 2025 'What’s wrong if the player wants to give interview in Hindi?' asks Irfan Pathan | Cricket News How freelancers can avoid hidden fees and maximise their earnings Anxious China celebrity couple give short son hormone jabs to help him grow How do changemakers implement best practices in solid waste management Market cap of top-10 companies shrinks by ₹4.95 lakh crore; TCS, Reliance bear the brunt of bearish ... Maharashtra cabinet: Why Eknath Shinde’s role in Devendra Fadnavis’ govt is more powerful than you t... Chinese EV maker Nio unveils Firefly branded cars to take on Mini Cooper and Smart Over 1.2 crore people aged 60 years and above yet to receive first dose of Covid vaccine: Govt, ET H... Top 5 T20I pacers of 2024: No place for Jasprit Bumrah or Shaheen Afridi in Aakash Chopra's list | C... Vaccine hesitancy worldwide phenomenon, say experts; bat for educating people, ET HealthWorld Sunita Williams looks ‘skinny’ in new NASA photo, netizens concerned: ‘Evacuate ASAP’ Flood victims still waiting on compensation Beijing lodges ‘serious protest’ with US after latest arms pledge for Taiwan A statistical deep-dive into India vs Australia Tests at Melbourne | Cricket News Exclusive | Rosewood Hotel Group targets Chinese travellers in Abu Dhabi, eyes further Mid-East expa... Green earthquake alert (Magnitude 5.6M, Depth:9.2km) in United States 22/12/2024 03:56 UTC, No peopl... German Christmas market suspect remanded by judge
HomeTechiOS 18.2 fixes critical security risks: Here’s why you MUST update your...

iOS 18.2 fixes critical security risks: Here’s why you MUST update your device

iOS 18.2 fixes critical security risks: Here’s why you MUST update your device

Apple iOS 18.2 Update: Apple has rolled out iOS 18.2 and iPadOS 18.2 updates, providing critical security fixes for its devices, including iPhone XS and later models, as well as various iPad Pro, iPad Air, iPad, and iPad mini generations.

According to Apple, these updates address a series of vulnerabilities, some of which could potentially expose users to significant risks.

- Advertisement -

The tech giant refrains from disclosing details of vulnerabilities until investigations are completed and patches are made available. Here is a breakdown of the key issues addressed in the latest update:

Data Privacy Risks

Multiple vulnerabilities were patched in AppleMobileFileIntegrity, which could have allowed malicious applications to access sensitive information. As per the company, researchers Mickey Jin and Arsenii Kostromin, along with others, identified these flaws, highlighting potential risks to user privacy.

Similarly, a permissions issue in Crash Reporter was rectified, ensuring apps cannot access sensitive user data without proper authorisation.

Kernel Security Enhancements

Several kernel-related vulnerabilities were addressed. One issue, identified by Joseph Ravichandran, involved a race condition that could lead to the leakage of sensitive kernel states. Another kernel flaw could potentially allow attackers to corrupt memory or cause unexpected system terminations. These vulnerabilities have been fixed with improved validation and memory handling mechanisms.

WebKit and Image Handling Issues

WebKit, the engine powering Apple’s Safari browser, was a focus of this update. Researchers uncovered multiple flaws in processing maliciously crafted web content, which could result in memory corruption or process crashes. Apple resolved these issues with enhanced memory handling and better checks.

In addition, vulnerabilities in ImageIO and FontParser were patched to prevent the disclosure of process memory when handling maliciously crafted images or fonts.

Application Privilege Management

Issues in libxpc allowed applications to either escape sandbox restrictions or gain elevated privileges, posing significant risks to device security. Apple implemented logic checks to mitigate these threats.

Miscellaneous Fixes

The update also addressed a Safari issue where adding websites to the Reading List while using Private Relay could reveal the user’s originating IP address. Additionally, improvements to VoiceOver ensure that attackers with physical access to a device cannot view notification content from the lock screen.

Users are advised to install iOS 18.2 and iPadOS 18.2 promptly to safeguard their devices and personal information.

Source link

RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -

Most Popular

Recent Comments