Apple has published details about the security improvements included in iOS 18, macOS 15 Sequoia, tvOS 18, watchOS 11 and VisionOS 2. As usual, the updates fix several vulnerabilities. It does not appear that any exploits have been made for the gaps that are already “in the wild”, at least the company does not provide any information about them.
Advertisement
90+ CVE IDs for macOS 15
iOS 18 and iPadOS 18 It includes more than 30 fixes detailed by Apple, as well as a total of 20 bugs for which no details have been provided so far, but the discoverers have been credited. Many areas are affected, ranging from Mail, Notes, Siri and UIKit to access to the kernel, the voice assistant Siri and the browser engine WebKit. According to Apple, among other things, denial-of-service attacks can occur, access to private data, and leakage of VPN and network information. Unwanted access to Bluetooth is also possible. Unfortunately, Apple’s way of describing the bug is quite indirect. For example, there is talk of “unauthorized access” or writing “arbitrary files”, but the company does not describe executing code (possibly with kernel rights) or remote attacks.
But macOS 15 In total there are more than 70 (!) fixed security vulnerabilities listed – which are divided into more than 90 CVE IDs. There are also more than 30 bugs for which only the corresponding areas and credits exist, but no further information. As is usual with Apple, only completely new operating systems include all the fixes. Updates for older systems include only the most critical bug fixes (as Apple considers them). Overall, it is quite difficult to classify the threats posed by the bugs this time.
World record: Hydrofoil electric boat Candela C-8 crosses the Baltic SeawatchOS, tvOS, and visionOS
According to Apple, watchOS 11 includes: Eleven reforms There are some issues involved, which are not listed in detail. tvOS 18 There are also eleven—plus three that are not listed in detail—for which there are only credits.
Included for Vision Pro VisionOS 2 The first major update. It fixes at least 15 security-related bugs. These are located in APFS, Game Center, ImageIO and the kernel, among other things. A bug in Presence meant that sensitive GPU memory areas could be read. Any files can be overwritten using Notes.
(B.Sc.)
Constitutional Court overturns persistent cell phone tracking by the Office for the Protection of the Constitution in Hesse
