Apple patches two zero-day vulnerabilities in iOS 14.4, other updates


Apple’s latest iOS 14.4 and iPadOS 14.4 updates include fixes for two zero-day security flaws that the company believes may have been exploited in the wild.

The vulnerabilities exist in the kernel and WebKit frameworks, Apple said in a security updates document. They affected all devices capable of running iOS 14 or iPadOS 14, but were patched in the iOS 14.4 and iPadOS 14.4 updates released on Tuesday.

According to Apple, the kernel vulnerability may have allowed attackers to elevate privileges. On the other hand, the WebKit flaw could have been used by a remote attacker to cause arbitrary code execution.

Apple says it is aware of reports that both vulnerabilities “may have been actively exploited” in the wild. In other words, both flaws are zero-days. No additional information is available, but Apple says more details will be coming soon.

Additionally, the watchOS 7 and tvOS 14.4 updates released on Tuesday also fix what appear to be similar kernel issues that could have been used to elevate privileges in an attack.

Because of the nature of the vulnerabilities and the fact that exploits may exist, it is recommended that users upgrade to iOS 14.4 and iPadOS 14.4 as soon as possible.



Article First Apperared here

See also  Customizing your macOS Dock to display only running apps is simple and can help streamline your workflow. Here's how to do it:1. Click on the Apple menu in the top left corner of your screen and select "System Preferences."2. In the System Preferences window, click on "Dock."3. Check the box next to "Automatically hide and show the Dock" to enable this feature.4. Next, click on the drop-down menu next to "Show" and select "Only Active Applications."5. Close the System Preferences window and your Dock will now only show running apps.By following these steps, you can customize your macOS Dock to only display running apps, reducing clutter and helping you focus on your active tasks.