Apple releases iOS 13.6, macOS Catalina 10.15.6 and other security updates

Apple releases iOS 13.6, macOS Catalina 10.15.6 and other security updates

Apple has released security updates for iOS 13.6, macOS Catalina 10.15.6, Safari 13.1.2, and other products.

A hacker could exploit some of these vulnerabilities to take control of affected devices.

iOS and iPadOS security updates

The latest iOS 13.6 and iPadOS 13.6 security update addresses 29 vulnerabilities.

Three of the iOS updates fix Audio and AVEVideoEncoder vulnerabilities that could lead to arbitrary code execution. The AVEVideoEncoder vulnerability CVE-2020-9907 could allow an application to execute arbitrary code with kernel privileges.

Two of the updates also address Wi-Fi vulnerabilities CVE-2020-9917 and CVE-2020-9918. A remote attacker may be able to exploit those Wi-Fi issues to cause a denial of service, cause unexpected system termination or corrupt kernel memory.

In addition, Apple fixed a Bluetooth vulnerability CVE-2020-9931 that could allow a remote attacker to crash applications.

To add, a Safari password autofill bug CVE-2020-9903 was also fixed. A malicious attacker could cause Safari to suggest a password for the wrong domain.

macOS security updates

Apple also released updates for macOS Catalina 10.15.6, Security Update 2020-004 Mojave, and Security Update 2020-004 High Sierra.

A total of 19 macOS patches address Audio, Graphics Drivers, Kernel, Mail, Messages and Wi-Fi vulnerabilities, among others.

Other product updates

Finally, Apple also released the following security updates that fix multiple vulnerabilities:

Users and organizations should apply the necessary updates as soon as possible.

Related Articles