Security News > 2023 > July > Urgent! Apple fixes critical zero-day hole in iPhones, iPads and Macs
The second-ever Apple Rapid Security Response just came out.
The last point above is surprisingly important, given that Apple absolutely will not allow you to uninstall full-on system updates to your iPhones or iPads, even if you find that they cause genuine trouble and you wish you hadn't applied them in the first place.
That's because Apple doesn't want users to be able to downgrade on purpose to reintroduce old bugs that they now know can be used for jailbreaking devices or installing an alternative operating system, even on devices that Apple itself it no longer supports.
T]hey deliver important security improvements between software updates - for example, improvements to the Safari web browser, the WebKit framework stack or other critical system libraries.
Browsing on its own is meant to be comparatively low risk, given that the browser itself is supposed to programmed to shield you from immediate harm.
Depends on the browser not having any security bugs through which booby-trapped content could circumvent the browser's own security shields and subject you to what's jocularly known as a drive-by install or a look-and-get-pwned attack.
News URL
Related news
- Apple backports zero-day patches to older iPhones and Macs (source)
- Apple fixes WebKit zero-day exploited in ‘extremely sophisticated’ attacks (source)
- Choose your own Patch Tuesday adventure: Start with six zero day fixes, or six critical flaws (source)
- Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks (source)
- Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
- Apple Backports Critical Fixes for 3 Recent 0-Days Impacting Older iOS and macOS Devices (source)