Three Major Vulnerabilities in iOS

Apple recently released security patches for 3 major vulnerabilities found in iOS. These vulnerabilities were reported to Apple by Google's Project Zero security team.

Threat Level

MEDIUM

Software Affected

  • iPhone 5S and later, iPod touch 6th & 7th gen, iPad Air, iPad mini 2 and later, Apple Watch Series 1 and later

 

Description

According to the Apple security advisory below are 3 major security flaws,

  • CVE-2020-27930: A memory corruption issue in the FontParser library that allows for remote code execution when processing a maliciously crafted font.
  • CVE-2020-27932: A memory initialization issue that allows a malicious application to execute arbitrary code with kernel privileges.
  • CVE-2020-27950: A type of confusion issue that makes it possible for a malicious application to disclose kernel memory.

Impact

  • Exposing private information to unauthorized parties
  • Unauthorized access
  • Malware infections

Solution/ Workarounds

  • Update to the latest iOS versions (Fixes are available for the iOS versions iOS 12.4.9 and 14.2, iPadOS 14.2, watchOS 5.3.9, 6.2.9, and 7.1, and as a supplemental update for macOS Catalina 10.15.7)

Reference

Disclaimer

The information provided herein is on an "as is" basis, without warranty of any kind.

Source: Sri Lanka CERT - https://www.cert.gov.lk

Rate this item
(0 votes)
K Dinesh Kumara

Mr. K Dinesh Kumara

Founder and Editor,

PC World Online Magazine

I'm an Entrepreneur & an Educator. I like Psychology and ICT. I'm a Workaholic too. Learning is my Hobby.

Address: 5th Mile Post, Nannapurawa, Bibile, Sri Lanka. 91519.

Telephone and SMS: 070 204 2691

Skype ID: kdktec

E-Mail: kdkrun@gmail.com

Website: https://www.pcworld.lk

My Upwork Profile: https://www.upwork.com/freelancers/~01346a1284f2b07b13

 

Social Network Channels

FaceBook: https://www.facebook.com/KDineshKumara

YouTube: https://youtube.com/c/KDKTECPCWorldOnlineTelevision

Twitter: https://twitter.com/kdktec

Leave a comment

Please do not enter any marketing or illegal statements | කරුණාකර අලෙවිකරණ හෝ නීති විරෝධී ප්‍රකාශන ඇතුළත් නොකරන්න.

230 comments

More in this category:

Video Of The Day | දවසේ වීඩියෝව

Subscribe to Weekly Email Newsletter




Joomla Extensions powered by Joobi

Articles Archive

Articles Calendar

« October 2022 »
Mon Tue Wed Thu Fri Sat Sun
          1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30
31            
042690487
Today
Yesterday
This Week
Last Week
This Month
Last Month
All days
44356
134088
44356
41639680
178444
1979819
42690487
Your IP: 18.208.187.128
2022-10-02 09:13
Go to top