Apple releases security updates addressing issues in WebKit

Hemani Sheth Mumbai | Updated on May 04, 2021

This is the third update released for flaws in Webkit

Apple has released new updates for various Apple devices that fix security issues that may have been “actively exploited.”

The updates include iOS/iPadOS 14.5.1, macOS 11.3.1, and watchOS 7.4.1 (via The Verge). The updates address vulnerabilities in Apple’s WebKit, the browser engine that is used in the Safari browser across all Apple devices.

These vulnerabilities are CVE-2021-30665 and CVE-2021-30663.

“Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited,” Apple explained in a support page.

Apple rolls out fix for WebKit security issue

Memory corruption issue

It has addressed a “memory corruption issue” and an “integer overflow issue” in Webkit.

The iOS/iPadOS 14.5.1, macOS 11.3.1, and watchOS 7.4.1 updates are available for iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation), macOS Big Sur and Apple Watch Series 3 and later, respectively.

Apple fixes security issues ‘actively exploited’ by hackers with its latest update

For older devices such as iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation), it has released the iOS 12.5.3 update which addresses various issues with WebKit and WebKit Storage.

Apple to let users find third-party products with Find My network

This is the third update that Apple has released to address flaws in Webkit. It had previously addressed similar issues with iOS 14.4.2 and iPadOS 14.4.2 updates which cover older devices as well as with watchOS 7.3.3 update for Apple Watches.

Previously, it had also released 14.4 and iPadOS 14.4 updates for the same.

Published on May 04, 2021

Follow us on Telegram, Facebook, Twitter, Instagram, YouTube and Linkedin. You can also download our Android App or IOS App.

  1. Comments will be moderated by The Hindu Business Line editorial team.
  2. Comments that are abusive, personal, incendiary or irrelevant cannot be published.
  3. Please write complete sentences. Do not type comments in all capital letters, or in all lower case letters, or using abbreviated text. (example: u cannot substitute for you, d is not 'the', n is not 'and').
  4. We may remove hyperlinks within comments.
  5. Please use a genuine email ID and provide your name, to avoid rejection.