Reviews

iPadOS 15.7 released for iPad

Apple has released a new update for the iPad, iPadOS 15.7, the software was released at the same time as the iOS 16 and watchOS 9 software updates.

Apple also released macOS Bug Sur 11.7 and macOS Monterey 12.6. All these updates contain a number of security fixes for some important issues.

You can see the security release notes below.

Released September 12, 2022

contacts

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. The app may have bypassed privacy settings.

Description. This issue was addressed with improved checks.

CVE202232854 : Holger Fuhrmannek of Deutsche Telekom Security

nucleus

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. An application can execute arbitrary code with kernel privileges.

Description. This issue was addressed through improved memory handling.

CVE202232911: Zweig of Kunlun Lab

nucleus

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. An application can expose kernel memory.

Description. This issue was addressed through improved memory handling.

CVE202232864: Linus Henze of Pinauten GmbH (pinauten.de)

nucleus

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. An application can execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.

Description. This issue was addressed with improved bounds checking.

CVE202232917: Anonymous Researcher

cards

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. The app can read sensitive location information.

Description. A logic issue was addressed with improved restrictions.

CVE202232883 : Ron Masas at breakpointhq.com

media library

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. The user can elevate privileges.

Description. A memory corruption issue was addressed with improved input validation.

CVE202232908: Anonymous Researcher

Safari

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. Visiting a malicious website can result in address bar spoofing.

Description. This issue was addressed with improved checks.

CVE202232795: Narendra Bhati of Suma Soft Pvt. Pune LLC (India) @imnarendrabhati

Safari extensions

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. A website can track users using Safari web extensions.

Description. A logic issue was addressed with improved state management.

WebKit Bug: 242278
CVE202232868: Michael

Labels

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. A person with physical access to an iOS device can access photos from the lock screen.

Description. A logic issue was addressed with improved restrictions.

CVE202232872 : Elite Tech Guru

webkit

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. Processing maliciously crafted web content may lead to arbitrary code execution.

Description. A buffer overflow issue was addressed with improved memory handling.

WebKit Bug: 241969
CVE202232886: P1umer, afang5472, xmzyshypnc

webkit

Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).

Impact. Processing maliciously crafted web content may lead to arbitrary code execution.

Description. Reading out of bounds was addressed with improved bounds checking.

WebKit Bug: 242762
CVE202232912 : Chonghun Shin (@singi21a) of Theori working with the Trend Micro Zero Day Initiative

It is recommended that you install the iPadOS 15.7 software update on your device. You can install the update by going to Settings > General > Software Update on your device and clicking Install Update.

Back to top button

Adblock Detected

Please consider supporting us by disabling your ad blocker.