Apple has issued iOS and iPadOS 15.0.2 updates, including a patch for an actively exploited zero-day bug. It is strongly advised that you update as soon as possible.
If you have an iPhone or iPad, you should upgrade to the latest iOS and iPadOS versions as soon as possible. Indeed, Apple has said that these two operating systems’ version 15.0.2 fixes a zero-day that has been demonstrated to be actively exploited.
An unknown researcher discovered the flaw, which is now known as CVE-2021-30883. It’s found in the kernel extension IOMobileFrameBuffer. The vulnerability is of the memory corruption variety, allowing an attacker to run arbitrary code with kernel privileges. According to Apple, it would be aggressively abused, and a proof of concept has already been published online by researcher Saar Amar immediately after the patch’s release. As is customary, the company did not provide any more information on the circumstances in which the zero-day issue was exploited, preferring to wait until customers could apply the fix. This vulnerability appears to be quite similar to CVE-2021-30807, a memory corruption problem in IOMobileFrameBuffer patched in July.
Additional bugs have been fixed
In addition to addressing this zero-day vulnerability, these upgrades also address the following issues in iOS and iPadOS:
When the article that initially included the photos was deleted, the images received in messages and saved in the library might also be erased.
- The “Objects” tab of the “Locate” program could not find AirTag
- Using Finder or iTunes to restore or update an iPhone 13 or iPad mini 6th generation device might fail.
- The iPhone leather card holder with MagSafe was unable to connect to “Locate.”
- CarPlay may be unable to access audio applications or may log out when playing music
