Security News > 2023 > March > Apple patches all the iThings, including iOS 15 hole under attack right now

Happy belated Patch Tuesday from Cupertino: Apple has issued security updates for almost every piece of code it slings - including a fix for a vulnerability in older iOS devices the iGiant believes is under attack right now.

The US government's Cybersecurity and Infrastructure Security Agency logged the WebKit type confusion flaw in its Known Exploited Vulnerabilities Catalog on February 14, a day after Apple patched the issue in macOS Ventura, Safari 16 on macOSes Big Sur and Monterey, and iOS 16.

One answer may lie in January's patch bundle from Apple, which included a fix for a similar WebKit flaw which was also under active attack for iOS 12 users.

Apple splats zero-day bug, other gremlins in macOS, iOS Apple emits emergency patch for older iPhones after snoops pounce on WebKit hole US cybersecurity chief: Software makers shouldn't lawyer their way out of security responsibilities Google: Turn off Wi-Fi calling, VoLTE to protect your Android from Samsung hijack bugs.

"You can update to the latest version of iOS 15 as soon as it's released for the latest features and most complete set of security updates. Or continue on iOS 14 and still get important security updates until you're ready to upgrade to the next major version," Apple said in the iOS 15 release notes.

Apple made similar upgrade concessions for users running iOS 15 whose devices are iOS 16 compatible, though in January it changed its tune on the 15/16 split, and is only issuing security updates for iOS 15 on devices that don't support iOS 16, which is reflected in the iOS 15 patch notes issued yesterday.

News URL

https://go.theregister.com/feed/www.theregister.com/2023/03/28/apple_patches_iphone/