Monday, March 29, 2021

Apple Security Advisory 2021-03-26-1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2021-03-26-1 iOS 14.4.2 and iPadOS 14.4.2

iOS 14.4.2 and iPadOS 14.4.2 addresses the following issue.
Information about the security content is also available at
https://support.apple.com/HT212256.

WebKit
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2
and later, iPad 5th generation and later, iPad mini 4 and later, and
iPod touch (7th generation)
Impact: Processing maliciously crafted web content may lead to
universal cross site scripting. Apple is aware of a report that this
issue may have been actively exploited.
Description: This issue was addressed by improved management of
object lifetimes.
CVE-2021-1879: Clement Lecigne of Google Threat Analysis Group and
Billy Leonard of Google Threat Analysis Group

Installation note:
This update is available through iTunes and Software Update on your
iOS device, and will not appear in your computer's Software Update
application, or in the Apple Downloads site. Make sure you have an
Internet connection and have installed the latest version of iTunes
from https://www.apple.com/itunes/
iTunes and Software Update on the device will automatically check
Apple's update server on its weekly schedule. When an update is
detected, it is downloaded and the option to be installed is
presented to the user when the iOS device is docked. We recommend
applying the update immediately if possible. Selecting Don't Install
will present the option the next time you connect your iOS device.
The automatic update process may take up to a week depending on the
day that iTunes or the device checks for updates. You may manually
obtain the update via the Check for Updates button within iTunes, or
the Software Update on your device.
To check that the iPhone, iPod touch, or iPad has been updated:
* Navigate to Settings
* Select General
* Select About. The version after applying this update
will be "iOS 14.4.2 and iPadOS 14.4.2".

Information will also be posted to the Apple Security Updates
web site: https://support.apple.com/kb/HT201222
This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEbURczHs1TP07VIfuZcsbuWJ6jjAFAmBeODIACgkQZcsbuWJ6
jjDsnw//asz2IB0wWiWimjgw1aJroh2wVuw8DITpTWAt3mJS223D8p+fLDf2aqx8
UO7Oxjzdq03oJbByaoER624K2hmw915YXdFsfDBLN4TaSrQaUAst0SzzTMSzdA3t
V1Uot8MaXpIidP+eYrnWWSFllQfqYIB9f/RYiZ07CKqjA8G95S821XMfjQ9CJkzW
9oQW92KUshjxR6rNN61+Tkvyh9Z9rT6a6D4OKlX4RoEcSyXHNbJmCFC2fx8Tw4xm
BnP7vXyYLMOhBLiNX+L2q2ph96E57hV77IsSWNKkdtD83cygqtt+4u/W3wdnee+U
yLGHRXe36vD1WvInb2b1EoDOWqC/CVCWf9gzES5HE58VN1CGfXiH4+kykEdO5HqN
cJGZTFxibIReDrtpxhhW0zS6JUwFMXgVLlLPlLBqCFf2TGDWKe6XX0v7D0PgNqZX
94O1/DVYCadiUvSMnv6lkTertH+UJJ6MNu+nyTjtkX183JLOUsMlZyLxZ6mpM91y
lF7NOIh9Dy5XgzU1sJhDqtMqhyvk7jxGIm6DES2xf5+YSHFqujGVPeHXUFq9AVbx
aK/YYyT++Nf1tfyE1CsH6+M7IcsJe9wVmsKljZ5MXX7W4tBj9l3NwQnPAbejy+vb
/msbc8BVIDBgZYgj2vThRy4IIYjn5on30BzRhTfB08H4bGkSbII=
=0iO5
-----END PGP SIGNATURE-----


 

Copyright © 2020 Cyber Details - Vulnerability Database™

Thanks for everything Templateism - You should have written the code a little more complicated