Apple fixes zero-day security flaw in iPadOS 16 and iOS 16.1

Apple released security updates on Monday, 24 October 2022, to address its ninth zero-day vulnerability found in iPhones and iPads this year.

The Cupertino-based tech company revealed the security flaw, which it has patched in its iOS 16.1 and iPadOS 16 updates, “may have been actively exploited”.

The vulnerability is tracked as CVE-2022-42827 and is related to an out-of-bounds write issue caused by software writing data outside the boundaries of the current memory buffer.

According to Bleeping Computer, the vulnerability can result in application crashes, data corruption, or memory corruption.

The zero-day could have been used to execute arbitrary code with kernel privileges if malicious actors managed to exploit it successfully.

Apple said the issue was addressed with improved bounds checking.

The launch of iPadOS 16 also saw the addition of support for Stage Manager — a multitasking feature that contributed to iPadOS 16’s delayed release.

Stage Manager automatically organises apps and windows to allow users to focus on one window at a time and efficiently switch between them.

Apple will also add full external display support to its M1 and M2 iPad models in an update later this year.

“Stage Manager will unlock full external display support with resolutions of up to 6K, so users will be able to arrange the ideal workspace, and work with up to four apps on iPad and four apps on the external display simultaneously,” it said.

The tablet operating system update also adds several other features, including Mail and Messages improvements, iCloud Shared Photo Library, and security and collaboration features for the Safari browser.

Now read: Security products to protect websites against DDoS attacks

Latest news

Partner Content

Show comments


Share this article
Apple fixes zero-day security flaw in iPadOS 16 and iOS 16.1