Security News > 2020 > January > Apple Security Updates Tackle iOS Device Tracking
Apple's latest security fixes, released Tuesday, tackle a wide range of bugs, including several patches for high-risk flaws that could allow for remote code execution.
The fixes address vulnerabilities in Apple's Xcode, watchOS, Safari, iTunes for Windows, iOS, iPadOS, macOS and tvOS. The most severe of the bugs include four RCE flaws in Apple TV's operating system, tvOS - each rated high-severity.
After some sleuthing by the site's author, Brian Krebs, he determined the tracking feature was tied to the use of Apple's own U1 chip, which was introduced in 2019 and used for the first time in iPhone 11S. The U1 chips uses Ultra-Wideband technology and aims to improve the performance of Apple services such as AirDrop.
In their wake, Apple has faced criticism for what critics see as a piecemeal release of the OS. Last month Apple updated the OS to iOS 13.3, which marked the third update to the iOS and iPadOS 13 since it debuted in on Sept. 19.
Since iOS 13's release, Apple has also had to issue a number of security patches, including ones for a keyboard bug and a lock-screen bypass flaw.
News URL
https://threatpost.com/apple-patches-ios-device-tracking/152364/
Related news
- Apple releases iOS 18, with security and privacy improvements (source)
- Docker-OSX image used for security research hit by Apple DMCA takedown (source)
- Week in review: Critical VMware vCenter Server bugs fixed, Apple releases iOS 18 (source)
- Apple's latest macOS release is breaking security software, network connections (source)