Skip to main content

Apple Releases iOS 15.3 and iPadOS 15.3 to Address Many Critical Software Issues



Apple has announced the release of the iOS 15.3 and iPadOS 15.3 update to all users of supported iPhone, iPad, and iPod touch devices, after it has been in beta for weeks, with performance improvements and fixes for serious software vulnerabilities in the operating system.

The iOS update does not bring any new feature to users, but it does address some serious vulnerabilities, such as the one recently discovered in Safari 15, which is likely to leak users' browsing history and Google ID data.

This vulnerability lies in a cross-origin issue with the IndexedDB API, which enables any website to use this API to access the names of IndexedDB databases created by other websites during the same browsing session. A malicious site could exploit access to these IndexedDB databases to gain access to the user's web browsing history, and even to obtain its Google ID and personal data.

This update also contains a fix for a bug in IOMobileFrameBuffer that enables a malicious application to execute arbitrary code with kernel privileges.

IOMobileFramebuffer is a kernel extension for managing the frame buffer, and Apple says that the vulnerability in this extension may have been actively exploited, which means that hackers may already have exploited it to attack users, and that alone is reason enough to install this new update.

The third major update of iOS 15 includes a fix for an issue in iCloud that could enable apps to access user files, as well as a fix for an issue with Crash Reporter that could enable apps to gain root privileges.

The update includes a fix for a Model I/O issue that may lead to unexpected application termination or arbitrary code execution during processing a maliciously crafted STL file, as well as a kernel issue fix that allows malicious applications from executing arbitrary code with kernel privileges.


This update may not provide any new visual feature to users, but it solves many serious and critical security problems in iOS and iPadOS systems, and Apple recommends users install this update as soon as possible.

Users who are also on iOS 14 must upgrade to iOS 15.3 to get these security fixes, as Apple has stopped issuing security patches to iOS 14 users.

This update can be installed on iPhone 6s and later, iPhone SE 2016 and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad Mini 4 and later, and iPod touch (7th generation). Users can install it by going to device Settings → General → Software Update.

Comments

Popular posts from this blog

DEKUVE Colors 0.1 is a beautiful and promising Linux distro based on Debian

As we said in a previous article, the most important characteristic of GNU Linux operating systems is its versatility, as there is a Linux distribution for everything and every taste and all types and specifications of hardware, it is an operating system that you can run in everything, whatever it is or is. Most of these distributions are derived or based from one of these parent distributions: Debian (like Ubuntu, Linux Mint, MX Linux...), Arch Linux (like Manjaro, EndeavourOS, Garuda Linux...), and Red Hat Enterprise Linux aka RHEL (like Fedora, CentOS, ClearOS...).  These derivative distributions are also divided into two types: the first one, where developers take the base of one of the other Linux distributions and build their distribution on it, by adding their packages and desktop environment, such as a Linux Mint distribution, for example, which develops the Cinnamon desktop interface and uses it in its main release, or uses a desktop interface already exists as Manjaro do, whi

Deepin Linux 20.2.2 Released With A Brand-New App Store, Android Apps Support, And More

The developers of the Chinese distribution of GNU Linux, Deepin, based on the stable version of Debian, announced the availability of a new version of the most beautiful distribution in the Linux world.  Deepin OS version 20.2.2 brings a set of new features and bug fixes for various components and components of the operating system to improve system consistency and stability and enhanced the overall user experience.  As usual for most Chinese projects, despite its useful features and beautiful design, Deepin Linux distribution suffers from a partial lack of translation into foreign languages, so we find some core operating system applications and components are in the Chinese language, and this is unfortunate, and we hope to be fixed in the Next versions of this beautiful Linux distro.  The first great and new feature in Deepin Linux 20.2.2, is that the OS comes now with Secure Boot support.  Secure Boot is a security standard developed by members of the PC industry to help ensure that

Rufus 3.18 Beta Adds The Bypass Of Windows 11 Restrictions To In-place Upgrades

A new beta version of the Rufus installation images burning tool was recently released with several new features, the most important of which is the ability to bypass Windows 11 restrictions for in-place upgrades. Rufus is a free and open-source tool that helps create bootable USB flash drives from ISO images. It supports most Linux distributions, in addition to Windows, and to MS-DOS compatible operating systems. This tool supports burning Windows installation images, from Windows XP SP2 and above, including the recently released Windows 11. After the release of Windows 11, Microsoft announced an update to the minimum specifications required to install the new system, the most important of which is that the computer must have a modern processor, TPM 2.0, and it must support secure boot too, to be compatible with Windows 11.  Many users did not like this, which made Microsoft allow Windows 11 to be installed on non-compatible devices by making some modifications in the system registry.