Apple releases iOS 15.3.1 with security and accessibility fixes
Apple introduced Apple iOS 15.3.1iPadOS 15.3.1, macOS Monterey 12.2.1 and watchOS 8.4.2 which all fix a major security flaw in WebKit.
The Fix WebKit is available for iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later later and iPod touch (7th generation).
Specially crafted websites can take advantage of the UAF bug, a vulnerability related to improper dynamic memory usage during program execution, to execute arbitrary code on your device.
The company said there was at least one report that the vulnerability was actively exploited before a patch was ready.
iOS 15.3.1 and iPadOS 15.3.1 for iPhone and iPad users arrives two weeks after the release of iOS 15.3. iOS 15.3 came with a number of performance and security fixes.
One of the most notable changes was the fix for a security vulnerability in Safari that leaked browsing history and Google credentials on websites I visited.
Today’s update improves the experience with additional improvements. The company says this update includes security fixes as well as a fix for a bug that affects braille displays.
You can update your iPhone to iOS 15.3.1 by going to the Settings app, selecting General, and then selecting Software Update. Note that the update version number is 19D52.
The update is available to users running the public version of iOS 15.3, not those running the beta version of iOS 15.4.
Apple’s iOS 15.3.1 is now available
Apple’s release notes state: iOS 15.3.1 provides important security updates for your iPhone. It also fixes an issue that could cause braille displays to become unresponsive.
The macOS upgrade also fixes a battery drain issue for MacBooks based on Intel processors. But reports indicate that users using M1-based Macs also noticed a bug.
This is the third exploit that Apple has patched in 2022. Including a kernel flaw as well as a Safari bug.
Although these are not exciting upgrades. But these upgrades suggest that Apple is determined to track potential attackers. It also shows that there are more threats to deal with in the first place.