![]() Ominously, given the world’s collective fear of cyberattacks and global hacking right now, each of the CVE-numbered bugs mentioned above is accompanied by Apple’s vague-as-usual wording that says, “Apple is aware of a report that this issue may have been actively exploited.”Ī zero-day, of course, is a security hole that the Bad Guys not only found first, but also figured out how to exploit before any patches were available. There’s no detail about what types of security flaw, if any, were addressed in the Apple Watch and Apple TV patches, so we can’t tell you whether these updates have any common ground with the zero-day fixes for Apple’s phones, tablets, laptops and desktop computers. ![]() Intriguingly, Apple’s core Security Updates page at HT201222 reports that there are updates denoted tvOS 15.4.1 and watchOS 8.5.1, but Apple merely remarks that these updates have “no published CVE entries”. (The last of these does happen from time to time.) No earlier versions of iOS, iPadOS or macOS seem to be affected by these bugs – or, more precisely, no updates for older versions have been published yet.Īpple, as ever, isn’t saying anything about the platforms that didn’t get updates, so it’s impossible to say whether they’re immune and thus unaffected, affected but simply being ignored, or affected and still awaiting updates that will show up in a few days. This security fix is for macOS Monterey, which gets updated to version 12.3.1. Apple Bulletin HT213220: Kernel code execution bug CVE-2022-22675 and kernel data leakage bug CVE-2022-22674.This security fix is for iOS and iPadOS, both of which get updated to version 15.4.1. Apple Bulletin HT213219: Kernel code execution bug CVE-2022-22675.Apple has just sent out two security advisories covering two zero-day security holes, namely:
0 Comments
Leave a Reply. |