Apple developers have released a series of updates for iOS, iPadOS and macOS, so the company fixed dozens of bugs in their OS.Users received additional protection against attempts to steal private data, attacks with the execution of third-party code, and other threats.
“Apple is caught in something of an infinite update loop that has prompted something of a negative response among some users as updates are shotgunned out with unusual frequency. This has been awkward for Apple—and it just got worse”, — writes Forbes observer Zak Doffman.
This is the first major patch package for macOS Catalina, which was released in early October. In less than a month, Apple specialists fixed 15 vulnerabilities in the system. The same number of patches fell on older versions of macOS – High Sierra and Mojave.
The most serious bugs allow attackers to execute third-party code, including using special audio files (CVE-2019-8706). Other vulnerabilities are threatened with DoS attacks, disclosure of system data or compromise of user accounts in individual applications.
On iOS 13.2 and iPadOS 13.2, there were also about 30 patches. Patches are relevant for iPhones no older than 6s, iPad Air starting from the 2nd generation, iPad mini from the 4th and iPod Touch 7. In this case, the developers eliminated the threat of third-party code execution, system memory leaks, and obtaining unauthorized rights. They also protected users from trying to covertly record the screens of their devices (CVE-2019-8793) and forcefully connecting to a malicious WiFi network (CVE-2019-8804).
Earlier this month, Apple released an emergency patch for Windows versions of iTunes to block an exploit based on a vulnerability in Bonjour. Attackers used it to distribute the BitPaymer ransomware.
Recall that Apple developers also called on the owners of the iPhone 5 to urgently upgrade to iOS 10.3.4. If you do not do this before November 3 of this year, resetting the internal GPS counter will cause errors in the device.
Despite the lack of publicity available on the various vulnerabilities in the multiple updates, it is obvious that users who have applied iOS 13 or iPadOS 13 updates, or moved to Catalina, should apply the newest updates right away. If you haven’t taken the plunge into one of the new operating systems, then just make sure you keep whatever you are using updated. As ever, the usual advice pertains: Keep your devices patched at all times, as Apple always cautions, and remember that updates are rushed out for a reason.