APPLE-SA-2021-05-03-2 iOS 12.5.3
Apple has issued out-of-band patches for critical security issues affecting iPad, iPhone and iPod, which could allow remote code execution (RCE) and other attacks, completely compromising users’ systems. And, the computing giant thinks all of them may have already been exploited in the wild.
Three of these are zero-day flaws, while one is an expanded patch for a fourth vulnerability.
Apple keeps details of security problems close to the vest, “for our customers’ protection,...
In Brief Apple on Monday patched security flaws in its software said to have been exploited in the wild by miscreants to hijack gear.
WebKit, fixed in macOS Big Sur 11.3.1, can be tricked into executing arbitrary code by processing malicious web content – a bad webpage can take over the browser, in other words. "Apple is aware of a report that this issue may have been actively exploited," it said in its advisory.
Specifically, there are two bugs: memory corruption flaw CVE-2021-306...