iOS 16.4.1, iPadOS 16.4.1, and macOS 13.3.1 Fix Actively Exploited Vulnerabilities - MacRumors
Skip to Content

iOS 16.4.1, iPadOS 16.4.1, and macOS 13.3.1 Fix Actively Exploited Vulnerabilities

by

Apple today released iOS 16.4.1, iPadOS 16.4.1, and macOS 13.3.1 for the iPhone, iPad, and Mac, respectively, and it's a good idea to install them as soon as you can because all three updates include important security fixes.

iphone 14 red
According to Apple's security support documents for iOS and macOS, the new software includes fixes for two separate vulnerabilities, both of which were known by Apple to have been actively exploited in the wild.

The IOSurfaceAccelerator vulnerability could allow an app to execute arbitrary code with kernel privileges. Apple addressed the out-of-bounds write issue with improved input validation. The WebKit vulnerability could allow maliciously crafted web content to execute code. Apple fixed this issue with improved memory management.

Google's Threat Analysis Group and Amnesty International's Security Lab are credited with finding and reporting both issues to Apple.

Apple has also released a new Safari 16.4.1 update for macOS Monterey and macOS Big Sur, which likely addresses the WebKit vulnerability.

Related Forums: iOS 16, macOS Ventura

Popular Stories

Dynamic Island iPhone 18 Pro Feature

11 Reasons to Wait for the iPhone 18 Pro

Monday May 11, 2026 9:01 am PDT by
We're only four months out from the launch of Apple's premium next-generation smartphone lineup, and while we're not expecting a sea change in terms of functionality, there are still several enhancements rumored to be coming to the iPhone 18 Pro and iPhone 18 Pro Max. One thing worth noting is that Apple is reportedly planning a major change to its iPhone release cycle this year, adopting a...
Read Full Article35 comments
iOS 26

iOS 26.5 Features: Everything New in iOS 26.5

Monday May 11, 2026 5:09 pm PDT by
Apple released iOS 26.5 after a few months of beta testing, and while it doesn't have the Siri features we were hoping for since those are being held until iOS 27, there are a handful of useful changes worth knowing about. Subscribe to the MacRumors YouTube channel for more videos. End-to-End Encryption for RCS Support for end-to-end encryption (E2EE) for RCS messages between iPhone and...
Read Full Article63 comments
General Apps Reddit Feature

Reddit Starts Blocking Mobile Website, Pushing Users to App Instead

Monday May 11, 2026 6:10 am PDT by
Social network Reddit recently began blocking mobile visitors to its website while pushing them to download the official Reddit app, and it's fair to say that the move is not going down well with users. If you visit reddit.com on your iPhone today, you may see a new popup that can't be dismissed, asking you to "get the app to keep using Reddit." A Reddit spokesperson told Ars Technica...
Read Full Article125 comments

Top Rated Comments

X
xxray
41 months ago
Isn't this the whole purpose of that rapid security release feature that was new to iOS 16? Why aren't they using that instead?
Score: 24 Votes (Like | Disagree)
I7guy Avatar
I7guy
41 months ago
Not gonna lie, gonna press that update button after this post.
Score: 22 Votes (Like | Disagree)
J
Jerry Fritschle
41 months ago

Good grief, nothing but actively exploited vulnerabilities these days. I’m ready to thin the herd of update-needy devices.
Enjoy your Etch-a-Sketch, then. :)
Score: 16 Votes (Like | Disagree)
snow755 Avatar
snow755
41 months ago

god, irritating as hell. They couldn't hold off on the 16.4 release to incorporate this security update into it? :mad:
just be happy they even updated at all lol remember back in the old days you where lucky that you got a IOS update once every 3 to 6 months
Score: 14 Votes (Like | Disagree)
Luap Avatar
Luap
41 months ago
Phew, what a relief! This one had been bugging me for literally nano seconds..

"Pushing hands emoji does not show skin tone variations"


;)
Score: 13 Votes (Like | Disagree)
L
Lounge vibes 05
41 months ago

god, irritating as hell. They couldn't hold off on the 16.4 release to incorporate this security update into it? :mad:
Clearly not, or else they would’ve.
16.4 already included something like 2 1/2 dozen security fixes over 16.3.1, i’m sure if it was possible for them to include one more they would have.
Score: 12 Votes (Like | Disagree)
Read All Comments