iPhone and iPad owners should consider updating to iOS 17.4 and iPadOS 17.4 as soon as possible, as these updates address two critical security vulnerabilities that could have been exploited to access users’ devices.
Details about vulnerabilities
In the security support document for the updates, Apple mentions that it is “aware of a report” that vulnerabilities in RTKit and the kernel could have been exploited by malicious actors. The impact of these vulnerabilities could allow an attacker with arbitrary kernel read and write capabilities to bypass kernel memory protections. Apple has confirmed that it is aware of reports suggesting this issue could have been exploited.
Recent vulnerabilities discovered in Apple’s operating system underscore the importance of keeping devices updated to protect user privacy and security.
Solutions implemented to improve security
To mitigate these threats, Apple has fixed the memory corruption issue with improved validation, effectively patching the security hole.
Other vulnerabilities addressed
iOS 17.4 and iPadOS 17.4 also fix an Accessibility vulnerability and an issue with Safari Private Browsing, which could allow locked tabs to be briefly visible when switching between tab groups.
How to update your device
Software updates were released this morning and are available for eligible iPhones and iPads by going to Settings > General > Software Update. It is crucial for users to update their devices to protect against potential exploitation of these vulnerabilities.