iPhone iOS 16.1.1 Fixes Two Vulnerabilities – Time to Update
Apple has released an update that protects users from security vulnerabilities that could affect iPhones and iPads.
The security update protects users from two vulnerabilities, CVE-2022-40303 and CVE-2022-40304. Both vulnerabilities were found in libxml2, a software library for parsing XML documents and both were exposed by google project zero, Google’s team of cybersecurity researchers.
Both CVE-2022-40303 and CVE-2022-40304 could allow a remote user to cause an unexpected application termination or arbitrary code execution – potentially enabling an attacker to run commands on the device.
The vulnerabilities under CVE ratings are rated as having moderate impact, meaning there are flaws that may be difficult to exploit but may lead to a compromise.
Apple doesn’t detail how the vulnerabilities work or what exactly was done to fix them, citing how, “To protect our customers, Apple does not disclose, discuss, or confirm security issues until an investigation is conducted and patches or releases are available.”
Apple’s release notes say the update app, which also brings unspecified bug fixes, is “recommended for all users.”
The update is available for iPhone 8 and later, all iPad Pro models, iPad Air 3rd generation and later, iPad 5th generation and later, and iPad mini 5th generation and later.
if Automatic updates are not already turned onYou can apply the update by going to Settings > General > Software Update.
More about cyber security
#iPhone #iOS #16.1.1 #Fixes #Vulnerabilities #Time #Update