Apple emits macOS, iOS, iPadOS patches for ‘exploited’ security bugs


Apple has released updates for its mobile and desktop operating systems to patch security holes that may well have been exploited in the wild.

On Thursday, the iPhone giant issued macOS Monterey 12.3.1; iOS 15.4.1 and iPadOS 15.4.1; tvOS 15.4.1; and watchOS 8.5.1 to address vulnerabilities in its software.

The Monterey release closes CVE-2022-22675, an out-of-bounds write flaw reported by an anonymous researcher, in the driver-level AppleAVD audio-video decoder. This can be abused by an application to run code at the kernel level, meaning a rogue app or user can gain powerful privileges and completely take over the machine.

Read more…
Source: The Register