APPLE-SA-2021-05-03-4 macOS Big Sur 11.3.1
Today, Apple has released security updates that fix two actively exploited iOS zero-day vulnerabilities in the Webkit engine used by hackers to attack iPhones, iPads, iPods, macOS, and Apple Watch devices.
"Apple is aware of a report that this issue may have been actively exploited," the company
in multiple security advisories published today.
Webkit is Apple's browser rendering engine that is required to be used by all mobile web browsers in iOS and other applications that...
In Brief Apple on Monday patched security flaws in its software said to have been exploited in the wild by miscreants to hijack gear.
WebKit, fixed in macOS Big Sur 11.3.1, can be tricked into executing arbitrary code by processing malicious web content – a bad webpage can take over the browser, in other words. "Apple is aware of a report that this issue may have been actively exploited," it said in its advisory.
Specifically, there are two bugs: memory corruption flaw CVE-2021-306...