Whereas there’s each motive to imagine that iOS 17.2 is simply across the nook, Apple has now rolled out an interim iOS 17.1.2 replace to deal with some bugs and different safety points within the present public iOS 17.1.1 launch.
Studies that iOS 17.1.2 was within the works surfaced final week when the oldsters at MacRumors discovered proof of gadgets operating the brand new model in its web site analytics. Nonetheless, whereas the discharge date for the patch was unclear, most anticipated it wouldn’t arrive till after the US Thanksgiving vacation weekend, as Apple usually provides most of its workers prolonged time without work over that interval.
There additionally wasn’t a lot details about what to anticipate from the replace, though as a sub-point launch, it was a secure wager it will be principally bug fixes and safety patches.
For instance, a number of of us have reported Wi-Fi points in iOS 17 that haven’t been totally resolved and will have even gotten worse in iOS 17.1.1. There’s additionally an ongoing downside with wi-fi charging in some GM autos, plus some minor HomeKit and push notifications bugs which have been reported.
We’ll have to attend and see if immediately’s iOS 17.1.2 replace addresses any of those issues, however from the discharge notes, it doesn’t look promising. Fairly than the standard references to “bug fixes and efficiency enhancements,” iOS 17.1.2 suggests the main focus is solely on “necessary safety fixes.”
This replace supplies necessary safety fixes and is really useful for all customers.
Not like iOS 17.1.1, which didn’t embody any notable safety fixes, the iOS 17.1.2 replace addresses two WebKit vulnerabilities which can be probably already being exploited by hackers.
Because of Clément Lecigne of Google’s Menace Evaluation Group, Apple has patched two points with enter validation and reminiscence corruption in WebKit that might “disclose delicate data” and “result in arbitrary code execution.”
Since WebKit is the engine that powers not solely Safari however all different internet browsers on iOS, a nasty actor might craft a malicious internet web page that might do nasty issues in your iPhone or steal your private knowledge.
Whereas the particular mechanics of this are unclear, Apple notes on its safety updates web page for iOS 17.1.2 that it’s “conscious of a report that this difficulty might have been exploited towards variations of iOS earlier than iOS 16.7.1.”
Apple has not offered any element on how these flaws had been exploited within the wild; nevertheless, researchers in Google’s Menace Evaluation Group (TAG) usually discover zero-day vulnerabilities like these in state-sponsored spyware and adware equivalent to Pegasus and Predator which can be used to assault high-profile people equivalent to human rights activists, journalists, politicians, and dissidents.
Whereas this makes it much less probably that a mean person would fall prey to those exploits, it’s unattainable to rule that out fully. Extra considerably, now that iOS 17.1.2 has been launched and the vulnerabilities publicly disclosed to the world, the doorways are open for much less refined hackers and scammers to use these vulnerabilities towards Apple gadgets that haven’t but been up to date.
Because of this updating your iPhone as quickly as potential after a brand new safety patch is launched is important. Since Apple publishes particulars on these safety fixes in every iOS replace, even flaws that weren’t beforehand exploited received’t keep that means for lengthy.
The iOS 17.1.2 replace is accompanied by iPadOS 17.1.2 and macOS 14.1.2 updates that patch the identical vulnerabilities, together with a standalone Safari 17.1.2 for macOS Monterey and Ventura.