Final week, Apple quietly launched iOS 17.4.1, a sometimes minor sub-point-release replace of the shape that not often contains rather more than bug fixes and efficiency updates. Nonetheless, as unexciting as these updates normally are by way of new options, there’s nonetheless a vital motive to put in them as quickly as attainable: safety.
Now and again, a minor launch like this gives nothing apart from some minor bug fixes. Nonetheless, it’s rather more widespread that these updates patch essential safety flaws that Apple has found because the final main launch. iOS 17.4.1 is not any exception on this regard.
Whereas all of the thrilling stuff was in iOS 17.4 — together with some essential safety patches — Apple has discovered a few others that have been severe sufficient for it to not solely push out iOS 17.4.1 but additionally launch an iOS 16.7.7 replace for the iPhone X, iPhone 8, and iPhone 8 Plus, which might’t be up to date to iOS 17.
In keeping with Apple’s safety launch notes for iOS 17.4.1 (and 16.7.7), these embody patching a vulnerability in CoreMedia and WebRTC that might trigger issues hidden in picture information to “result in arbitrary code execution.” Nick Galloway of Google’s Challenge Zero is credited with discovering each of those safety holes.
The excellent news is that, not like two of the safety issues mounted in iOS 17.4, there’s no indication that both of those has been actively exploited by cybercriminals or different unhealthy actors. Nonetheless, that doesn’t imply they received’t be.
In truth, that’s probably the most harmful factor about not updating to a brand new model of iOS as quickly because it’s launched. Whereas iOS 17.4 had these safety vulnerabilities all alongside, only a few individuals really knew about them. Now, because of Apple’s launch notes, everybody does, together with scammers, hackers, and crooks who will attempt to discover methods to make use of them to wreak havoc in your iPhone — and probably, your private life.
This alone is why it’s by no means a good suggestion to remain behind on older variations of iOS—or any working system, for that matter. Within the title of transparency, Apple has to reveal these safety points as quickly as they’re patched, and there’s no means Apple can guarantee solely the “good guys” find out about them. Research have proven that almost all cyberattacks goal older software program variations with recognized — and printed — vulnerabilities.
Different Safety Updates and Fixes
The iOS 17.4.1 launch can also be accompanied by an iPadOS 17.4.1 replace (and iPadOS 16.7.7 for older units) that addresses the identical points on that aspect.
Apple additionally launched macOS Sonoma 14.4.1 and macOS Ventura 13.6.6 earlier right now to patch the identical points on the Mac, plus visionOS 1.1.1 final week for Apple Imaginative and prescient Professional house owners.
The discharge notes for macOS Sonoma 14.4.1 additionally embody a repair for the USB monitor hub drawback that we reported on final week, noting that “USB hubs linked to exterior shows might not be acknowledged.” There are additionally fixes for skilled music apps that depend on copy-protected audio unit plug-ins and different apps that embody Java in them.
Nonetheless, there’s no indication but if macOS 14.4.1 fixes the printing issues some have been reporting, significantly with HP printers or the file versioning difficulty with iCloud Drive.