In parallel with the release of iOS 16, the Cupertino company has released an update for all of its operating systems to correct a major security flaw that has potentially been exploited.
Last Monday, Apple released with great fanfare the iOS 16 update, which iPhone users have been waiting for for several months. But in parallel with this update, the Californian company has discreetly deployed a security patch aimed at correcting a major flaw on iOS, macOS and iPadOS. Apple has just corrected its eighth zero-day flaw since the beginning of this year. This breach, which was reportedly actively exploited in attacks against iPhones and Macs, allowed malicious applications to execute arbitrary code with elevated privileges giving access to the system’s kernel.
Although Apple has disclosed the existence and active exploitation of this zero-day flaw to the public, the firm has so far refused to give details on the operation of the attacks exploiting this breach. A usual approach among manufacturers and software publishers who hope that the corrective patches are downloaded and applied by as many of their users as possible.
Because this zero-day flaw, brought to the attention of Apple by a security researcher who requested anonymity, affects all Apple operating systems and by extension, all Californian devices. It was thus corrected in the updates iOS 15.7, iPadOS 15.7, macOS Monterey 12.6 and macOS Big Sur 11.7.
The list of devices potentially affected by this breach is therefore quite substantial. It includes iPhone 6s and above, all iPad Pro models, iPad Air 2 and above, iPad 5e generation and higher models as well as iPad mini 4 and higher and iPod Touch from 7egeneration. Macs are not left out since all machines capable of running macOS Big Sur 11.7 and macOS Monterey 12.6 are affected.