Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Apple Releases iOS and iPadOS 14.4.2 to Fix Actively Exploited Security Vulnerability

MacRumors

MacRumors

macrumors bot
Original poster
Apr 12, 2001
61,491
26,995


Apple today released iOS and iPadOS 14.4.2, minor security updates that come close to three weeks after the release of iOS/iPadOS 14.4.1 and more than a month after the iOS/iPadOS 14.4 updates.

iOS-14.4.2-on-phone-icon-fix.jpg

The iOS and iPadOS 14.4.2 updates can be downloaded for free and the software is available on all eligible devices over-the-air in the Settings app. To access the new software, go to Settings > General > Software Update.

According to Apple's release notes, the software provides an important security fixes and should be installed by all users. A security support document says that the update fixes a vulnerability that was actively exploited.
Impact: Processing maliciously crafted web content may lead to universal cross site scripting. Apple is aware of a report that this issue may have been actively exploited.
Click to expand...
Apple has fixed the issue by improved management of object lifetimes.

Apple has also released iOS and iPadOS 12.5.2, security updates that are available for older devices.

Article Link: Apple Releases iOS and iPadOS 14.4.2 to Fix Actively Exploited Security Vulnerability
 
Article Link
https://www.macrumors.com/2021/03/26/apple-releases-ios-14-4-2-with-security-fixes/
Last edited:
  • Like
Reactions: martyjmclean
Dwalls90

Dwalls90

macrumors 603
Feb 5, 2009
5,418
4,364
xpxp2002 said:
Trust me, it's not ready. Seeing this 14.4.2 makes me think there will likely be a 14.5B6 next week, if not sooner.
Click to expand...
I think that makes sense. If there is any sort of Apple event or pre-recorded presentation, it seems like it's coming not before the week of 4/5 (just my speculation based on no press release from Apple). That means B6 next week and maybe RC/final week of event.
 
  • Like
Reactions: xpxp2002
aesc80

aesc80

Cancelled
Mar 24, 2015
2,250
7,144
Just picked up the OTA on my iPhone 12 Pro Max. Very interesting in seeing 2 hot fixes rolled out. Wonder if the holdup on the 14.5 RC was to back this hot fix in and test everything again? (And to those that joke "oh, they couldn't do it at the same time?", lets remember back in iOS 13 when the team forgot to bake a hot fix security issue in and all of a sudden, the OS was breakable again.
 
  • Like
Reactions: TheYayAreaLiving 🎗️, DeepIn2U, mjs916 and 1 other person
A

Anson_431

macrumors regular
Sep 16, 2016
237
595
xpxp2002 said:
Trust me, it's not ready. Seeing this 14.4.2 makes me think there will likely be a 14.5B6 next week, if not sooner.
Click to expand...
I'll be honest, 14.5 beta 5 was not just nor ready, but behaving weirdly as well.

Initially after the update, apps that were launch would freeze and snap back to main screen. It was not until the second attempt in opening the same apps that the issue was resolved.

Very odd behavior considering this is beta 5 really :confused:
 
  • Like
Reactions: martyjmclean and xpxp2002
GeoStructural

GeoStructural

macrumors 65816
Oct 8, 2016
1,074
3,565
Colombia
mi7chy said:
What would Apple do without Google fixing all their security vulnerabilities?
Click to expand...

"CVE-2021-1879: Clement Lecigne of Google Threat Analysis Group and Billy Leonard of Google Threat Analysis Group".

For real, there have been so many iOS vulnerabilities discovered and reported by Google lately. So much for the walled garden, for the safe and private OS.
 
  • Like
Reactions: IceStormNG and 123
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom