- Aug 17, 2017
- 1,489
The core Apple Kernel component that is at the heart of both the IOS and macOS operating systems is being patched for multiple vulnerabilities that could lead to arbitrary code execution.
Apple released its first security updates of 2019 on Jan. 22, providing patches for multiple vulnerabilities across its IOS mobile and macOS desktop operating systems.
The new updates include IOS 12.1.3 for Apple's iPhone and iPad mobile devices, watchOS 5.1.3 for the Apple Watch and Security Update 2019-001 for macOS High Sierra. The patched vulnerabilities include privilege escalation, information disclosure and code execution flaws, that could potentially expose Apple's users to risk.
Among the most impactful vulnerabilities patched by Apple is the CVE-2019-6224 flaw that could have enabled a remote attacker to start a FaceTime call. The FaceTime flaw was discovered by Google Project Zero security researcher Natalie Silvanovich and has now been fixed by Apple with improved memory handling. The new security updates from Apple are the first patches since December 2018, when Apple also fixed a high-impact flaw in FaceTime. That flaw involved a passcode bypass identified as CVE-2018-4430 that could have enabled an attacker to bypass the IOS passcode.
A related story Apple's Latest iOS Update Fixes a Scary FaceTime Bug
Apple released its first security updates of 2019 on Jan. 22, providing patches for multiple vulnerabilities across its IOS mobile and macOS desktop operating systems.
The new updates include IOS 12.1.3 for Apple's iPhone and iPad mobile devices, watchOS 5.1.3 for the Apple Watch and Security Update 2019-001 for macOS High Sierra. The patched vulnerabilities include privilege escalation, information disclosure and code execution flaws, that could potentially expose Apple's users to risk.
Among the most impactful vulnerabilities patched by Apple is the CVE-2019-6224 flaw that could have enabled a remote attacker to start a FaceTime call. The FaceTime flaw was discovered by Google Project Zero security researcher Natalie Silvanovich and has now been fixed by Apple with improved memory handling. The new security updates from Apple are the first patches since December 2018, when Apple also fixed a high-impact flaw in FaceTime. That flaw involved a passcode bypass identified as CVE-2018-4430 that could have enabled an attacker to bypass the IOS passcode.
A related story Apple's Latest iOS Update Fixes a Scary FaceTime Bug
Last edited:
