iOS 16.5.1 and macOS 13.4.1 Address Actively Exploited Vulnerabilities, Make Sure to Update
Apple today released iOS 16.5.1, iPadOS 16.5.1, macOS 13.4.1, and watchOS 9.5.2 updates, with the software adding security improvements. If you haven't updated yet, you should as soon as you can as these updates address actively exploited vulnerabilities.
According to Apple's security support document, there are fixes for two vulnerabilities that may have been used by hackers and bad actors for system attacks.
A kernel vulnerability that can result in arbitrary code execution with kernel privileges was addressed with improved input validation for an integer overflow. Apple says that it is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7, so you are likely safe if you've been running iOS 16.
There is also a WebKit vulnerability that could allow maliciously crafted web content to execute code, and Apple says that it has received a report that the issue may have been actively exploited.
You should update your devices running iOS 16, iPadOS 16, macOS Ventura, and watchOS 9. If you have an older device, Apple has also released iOS 15.7.7, iPadOS 15.7.7, watchOS 8.8.1, macOS 11.7.8, and macOS 12.6.7.
Popular Stories
Apple today released a new Pride Edition Sport Loop for the Apple Watch. The band features a rainbow design with 11 colors of woven nylon yarns.
The new Pride Edition Sport Loop is available to order now on Apple.com and in the Apple Store app in 40mm, 42mm, and 46mm sizes, and it will be available at Apple Store locations starting later this week. In the U.S., the band costs $49.
There...
iOS 26.5 includes three new features for iPhones, according to Apple's release notes for the update, which is expected to be released next week.
As discovered during beta testing, iOS 26.5 enables end-to-end encryption for RCS messaging between iOS and Android devices. Apple says this security upgrade is limited to supported carriers around the world and will continue to roll out....
Instagram will remove end-to-end encryption for direct messages between users from May 8, 2026. When the date comes around, Meta will potentially be able to see the contents of all messages between users on the social media platform.
Encrypting messages has been an optional feature in Instagram since 2023, but in March of this year the social media platform quietly updated a help page to say ...
