Apple fixes at least a dozen security problems in iOS 17.2

Ángel González

2 minutes

iOS 17.2 now available

Yesterday was the day Apple decided to finally publish the final version of iOS 17.2, a version that had been in beta format for several weeks. The new version include great news like the Diary app new functions of the action button of the iPhone 15 Pro. However, something that is often overlooked are improvements in security. In this case, Apple has published the list of the vulnerabilities corrected and there have been at least a dozen. We'll tell you after the jump.

iOS 17.2: an update that improves the security of our devices

The information comes from the Apple's official website which is updated with the news regarding the security improvements incorporated in the new versions of iOS and iPadOS. A total of ten vulnerabilities appear in the new version notes of iOS 17.2 and iPadOS 17.2 and are summarized as follows:

  • Accounts: This exploit allowed access to sensitive user content
  • AVEVideoEncoder: an application could reveal kernel memory
  • ExtensionKit: Through this development kit and the error in question, private user information could be accessed
  • Search: through the application it was possible to obtain confidential information about the users' location
  • ImageIO: The bug built into this framework allowed arbitrary code to be executed
  • Kernel: This bug allowed an app to leave its sandbox
  • Safari Private Browsing: There was a security hole that allowed access to private browsing tabs without user permission
  • Crab: An attacker with physical access could use Siri to access sensitive user data
  • WebKit: Two errors have been attributed within this framework. One related to the execution of arbitrary code and another that was executed when processing an image that produced a denial of service
iOS 17.2
Related article:
iOS 17.2 now available with all these new features

All of these security holes have been fixed and apparently have not been exploited maliciously so far. The fact that Apple hasn't released a quick security update means it's in no rush to get these vulnerabilities fixed by forcing users to install the latest version. However, Updating to iOS 17.2 and iPadOS 17.2 is recommended beyond the security improvements.


Follow us on Google News