Apple has released new updates for various Apple devices that address security issues that may have been “actively exploited.”
Updates include iOS / iPadOS 14.5.1, macOS 11.3.1, and watchOS 7.4.1 (via The edge). The updates address vulnerabilities in Apple’s WebKit, the browser engine used in the Safari browser on all Apple devices.
These vulnerabilities are CVE-2021-30665 and CVE-2021-30663.
“Processing maliciously crafted web content can lead to the execution of arbitrary code. Apple is aware of a report that this problem may have been actively exploited, ”Apple explained on a support page.
Apple rolls out fix for WebKit security issue
Memory corruption issue
It fixed a “memory corruption issue” and an “integer overflow issue” in Webkit.
IOS / iPadOS 14.5.1, macOS 11.3.1, and watchOS 7.4.1 updates are available for iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later , iPad mini 4 and later, and iPod touch (7th generation), macOS Big Sur, and Apple Watch Series 3 and later, respectively.
Apple Fixes ‘Actively Exploited’ Security Issues By Hackers With Latest Update
For older devices such as iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation), it released the iOS 12.5.3 update which fixes various issues with WebKit and WebKit Storage.
Apple allows users to find third-party products with Find My Network
This is the third update released by Apple to correct the flaws in Webkit. It had previously addressed similar issues with the iOS 14.4.2 and iPadOS 14.4.2 updates that cover older devices as well as the watchOS 7.3.3 update for Apple Watches.
Previously, it had also released 14.4 and iPadOS 14.4 updates for the same.