Apple unveils new security exploits fixed with iOS 16.3. With the release of iOS 16.3.1, Apple has released several security patches for iPhone and iPad users. While the company has previously detailed these patches, Apple has now updated its security webpage to reveal that there are even more exploits that have been fixed with the latest iOS updates.
Windows 11 Pro officially supported with Parallels Desktop on M1 and M2 Macs
The new exploit listed by Apple that was fixed with iOS 16.3.1 is related to a “maliciously created certificate” that could lead to a denial-of-service (DoS) attack, when the attacker floods the device or the network with malicious traffic. Apple says the DoS issue has been addressed with “improved input validation.”
Interestingly, the iOS 16.3 security webpage has also been updated with three new exploits that have been fixed with the update. One of the exploits, which was found in the System Crash Reporter, could allow attackers to read arbitrary files as root. Two other Foundation-related exploits could allow attackers to execute arbitrary code on a higher-privileged iPhone or iPad, bypassing the app sandbox.
It’s not clear why Apple didn’t mention such security exploits sooner. But it’s worth keeping in mind that these vulnerabilities have all been fixed with iOS 16.3.1, which is now available for users. With macOS 13.2.1 and iOS 16.3.1, Apple also fixed a security breach related to WebKit (the Safari web browser engine) that had been “actively exploited.”
