Patch iPhones, iPads, Apple urges

October 4, 2023

1 min.

Apple today released emergency patches for a wide range of iPhones and iPads.

Users should ensure their devices are running versions 17.0.3 of the operating systems.

The update closes two vulnerabilities:

— CVE-2023-42824, a hole in the kernel that could allow a local attacker to elevate their access privileges. “Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6,” the CVE notice says;

— and CVE-2023-5217, a heap buffer overflow in Google Chrome’s libvpx library that could be triggered by a maliciously crafted HTML page.

Affected are

— iPhone XS and later;

— iPad Pro 12.9-inch 2nd generation and later

— iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later;

— iPad Air 3rd generation and later;

— iPad 6th generation and later;

— and iPad mini 5th generation and later.

This latest update follows the release last week of iOS 17.0.2. The previous week, Apple issued iOS/iPadOS 17.0.1 for iPhones and iPads to fix vulnerabilities stemming from the discovery by the University of Toronto’s Citizen Lab and Google of an iPhone zero-day exploit chain used to secretly install Cytox’s Predator spyware.

The post Patch iPhones, iPads, Apple urges first appeared on IT World Canada.

Howard Solomon https://www.itworldcanada.com

Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times.

SUBSCRIBE NOW

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways

Subscribe Now

Cyber Security Today – Week In Review for September 7, 2024

You’re not crazy – your smart phone could be listening to you

Dick’s Sporting Goods faces potential cyberattack

Mastering AI & Cybersecurity: Navigating the Future – A Special Panel Discussion

Canadian schools sue social media giants over alleged harm to children

ChatGPT mobile mania: Why users are flocking to ChatGPT Plus

iOS update brings back photos users thought were permanently deleted

Microsoft reveals critical security flaw affecting Android apps

Are AI enabled features worth a 300% increase in software price? Hashtag Trending for Wednesday, September 4, 2024

You’re not crazy – your smart phone could be listening to you

Elon Musk vs Brazil : Hashtag Trending for September 3, 2024

Toronto schools, a large credit union and Columbus Ohio – all hacked. Cyber Security Today for Tuesday, September 3, 2024

Patch iPhones, iPads, Apple urges

AI and Cyber Security: Practical Insights. Hashtag Trending Weekend Edition (repeat episode)

You.com versus Perplexity.ai. Two AI’s go to head with an twist. A debate between AI’s with an AI judge

AI – What you missed this summer. Hashtag Trending for Friday, September 6, 2024

“Active Listening” software used to listen in on smart phone conversations. Cyber Security Today for Thursday, September 5, 2024

Would you pay for a more intelligent Alexa powered by Anthropic’s Claude AI? Hashtag Trending for Thursday, Sept 5, 2024

SUBSCRIBE NOW

Related articles

Cyber Security Today – Week In Review for September 7, 2024

You’re not crazy – your smart phone could be listening to you

Dick’s Sporting Goods faces potential cyberattack

Mastering AI & Cybersecurity: Navigating the Future – A Special Panel Discussion

Become a member