Security News > 2020 > January > Apple Security Updates Tackle iOS Device Tracking
Apple's latest security fixes, released Tuesday, tackle a wide range of bugs, including several patches for high-risk flaws that could allow for remote code execution.
The fixes address vulnerabilities in Apple's Xcode, watchOS, Safari, iTunes for Windows, iOS, iPadOS, macOS and tvOS. The most severe of the bugs include four RCE flaws in Apple TV's operating system, tvOS - each rated high-severity.
After some sleuthing by the site's author, Brian Krebs, he determined the tracking feature was tied to the use of Apple's own U1 chip, which was introduced in 2019 and used for the first time in iPhone 11S. The U1 chips uses Ultra-Wideband technology and aims to improve the performance of Apple services such as AirDrop.
In their wake, Apple has faced criticism for what critics see as a piecemeal release of the OS. Last month Apple updated the OS to iOS 13.3, which marked the third update to the iOS and iPadOS 13 since it debuted in on Sept. 19.
Since iOS 13's release, Apple has also had to issue a number of security patches, including ones for a keyboard bug and a lock-screen bypass flaw.
News URL
https://threatpost.com/apple-patches-ios-device-tracking/152364/
Related news
- Global Pressure Mounts for Apple as Brazilian Court Demands iOS Sideloading Within 90 Days (source)
- Apple Backports Critical Fixes for 3 Recent 0-Days Impacting Older iOS and macOS Devices (source)
- Apple fined €150 million over App Tracking Transparency issues (source)
- Apple Rolls Out iOS 18.4 With New Languages, Emojis & Apple Intelligence in the EU (source)
- Still Using an Older Version of iOS or iPadOS? Update Now to Patch These Critical Security Vulnerabilities (source)
- Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks (source)