Apple patches vulnerabilities in iOS 16.2, macOS Ventura 13.1 and other products

Apple has released security updates for Apple iOS 16.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, Safari 16.2, and other products.

A remote attacker could exploit some of these vulnerabilities to take control of unpatched systems.

iOS 16.2 and iPad 16.2

The latest iOS 16.2 and iPadOS 16.2 security update released on December 13, 2022 addressed 35 vulnerabilities. 14 of those may allow an attacker to execute arbitrary code (7 with kernel privileges).

The update is available for iPhone 8 and later, iPad Pro (all models), iPad Air 3rd generation and later, iPad 5th generation and later, and iPad mini 5th generation and later.

Moreover, Apple also released iOS 15.7.2 and iPadOS 15.7.2 for older iPhone and iPad models. Apple is aware of a report that a WebKit vulnerability (CVE-2022-42856) may have been actively exploited against versions of iOS released before iOS 15.1.

macOS Ventura 13.1

Apple released a security update for macOS Ventura 13.1 that patched 36 vulnerabilities, 8 that could allow a malicious application to execute arbitrary code with kernel privileges.

macOS Monterey 12.6.2

To add, Apple also released macOS Monterey 12.6.2 that fixed 13 vulnerabilities, 5 could allow a malicious application to execute arbitrary code with kernel privileges.

Two libxml2 vulnerabilities (CVE-2022-40303 and CVE-2022-40304) could allow a remote user to cause an unexpected app termination or arbitrary code execution.

Other security updates

Finally, Apple released additional security updates for these products:

Readers can check out the Apple security updates for more details.

Related Articles