Latest news with #CVE-2025-24085
Yahoo
07-02-2025
- Yahoo
When will iOS 18.3.1 come out and what features will it include?
Apple is preparing to release iOS 18.3.1, a minor but potentially important update for iPhone users that is expected to include security patches and bug fixes, according to a report from MacRumors. The update, which was first spotted in the website's analytics logs, is likely to arrive in the coming weeks. While Apple has not yet disclosed specific details, iOS 18.3.1 is expected to address vulnerabilities that may have emerged since the release of iOS 18.3 in late January. Apple's iOS 18.3 update introduced 29 security patches, including a CoreMedia vulnerability (CVE-2025-24085) that had already been exploited by attackers. That flaw allowed a malicious application to elevate privileges, making it a serious security risk. Additionally, a security issue affecting Macs and iPads, which was patched alongside iOS 18.3, has recently gained attention. While it is unclear if iOS 18.3.1 will specifically address this, Apple frequently issues mid-cycle updates to resolve vulnerabilities that have either been actively exploited or discovered after a major release. Tech: Meet the surprise new Apple app: Everything to know about 'Apple Invites' Beyond security fixes, iOS 18.3.1 is also expected to resolve software bugs that may be affecting device performance and stability. Given that iOS 18.4 is not expected until April, the update will likely provide interim fixes for issues impacting iPhone users. In addition to MacRumors, Forbes and MSN have reported what the next update could include. Apple has not announced an official release date, but based on past update cycles, iOS 18.3.1 could arrive within the next few weeks. MacRumors' analytics logs have historically been a reliable indicator of upcoming iOS versions, suggesting that the update is already being tested internally. To check for the latest software updates, iPhone users can go to Settings > General > Software Update and download iOS 18.3.1 once it becomes available. With the potential for critical security fixes, Apple users are advised to install the update as soon as it is released. This article originally appeared on iOS 18.3.1 likely coming to iPhone users soon. What to expect
Yahoo
27-01-2025
- Yahoo
Update Your iPhone: Apple Warns of Hackers Exploiting iOS Flaw
PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing. Apple has uncovered hackers exploiting a vulnerability in iOS that appears to have been lingering for more than a year. On Monday, the company issued the patch for the flaw in the iOS 18.3 release for iPhones. In the bug notes, Apple indicates that malicious software applications have been abusing the vulnerability to increase their access to system privileges. The company added: 'Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2,' which was released in December 2023. Apple iPhone models from 2018's XS and up are all affected. The vulnerability, dubbed CVE-2025-24085, involves how iOS processes multimedia files through a software framework called Core Media. The same framework suffered from a memory corruption error, called a 'use after free' bug, which can cause unstable behavior — paving a way to tamper with the software. Although details are thin, Apple's bug report suggests the hackers exploited the vulnerability starting over a year ago, possibly through fake apps designed to play media files. Since the attack went undetected for so long, the hackers may have used the vulnerability against specific high-value targets to hijack their iPhone devices. CVE-2025-24085 also represents the first 'zero-day' vulnerability that Apple has fixed for this year so far. In response, the company has not only issued a patch for iPhones and iPads, but also for macOS Sequoia, watchOS, tvOS and even Apple's Vision Pro headset. Users can update their iPhones by going to Settings > General > Software Update. The phone can also patch itself automatically if you've toggled on automatic updates.
