Monday, March 29, 2021

Apple Security Advisory 2021-03-26-2

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2021-03-26-2 iOS 12.5.2

iOS 12.5.2 addresses the following issue. Information about
the security content is also available at
https://support.apple.com/HT212257.

WebKit
Available for: iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad
mini 2, iPad mini 3, and iPod touch (6th generation)
Impact: Processing maliciously crafted web content may lead to
universal cross site scripting. Apple is aware of a report that this
issue may have been actively exploited.
Description: This issue was addressed by improved management of
object lifetimes.
CVE-2021-1879: Clement Lecigne of Google Threat Analysis Group and
Billy Leonard of Google Threat Analysis Group

Installation note:
This update is available through iTunes and Software Update on your
iOS device, and will not appear in your computer's Software Update
application, or in the Apple Downloads site. Make sure you have an
Internet connection and have installed the latest version of iTunes
from https://www.apple.com/itunes/
iTunes and Software Update on the device will automatically check
Apple's update server on its weekly schedule. When an update is
detected, it is downloaded and the option to be installed is
presented to the user when the iOS device is docked. We recommend
applying the update immediately if possible. Selecting Don't Install
will present the option the next time you connect your iOS device.
The automatic update process may take up to a week depending on the
day that iTunes or the device checks for updates. You may manually
obtain the update via the Check for Updates button within iTunes, or
the Software Update on your device.
To check that the iPhone, iPod touch, or iPad has been updated:
* Navigate to Settings
* Select General
* Select About. The version after applying this update
will be "iOS 12.5.2".

Information will also be posted to the Apple Security Updates
web site: https://support.apple.com/kb/HT201222
This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE-----
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=CcoR
-----END PGP SIGNATURE-----


 

Copyright © 2021 Vulnerability Database | Cyber Details™

thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore