iOS 16.5.1 fixes two major security flaws

Apple has released iOS 16.5.1, bringing fixes for two serious security flaws already being used in real-life iPhone attacks.

iOS 16.5.1 fixes an issue in the Kernel that could allow an attacker to execute code with Kernel privileges.

“Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7,” the company said.

The second issue fixed in iOS 16.5.1 is a flaw in WebKit, the engine that underpins Apple’s Safari browser, which could enable an attacker to execute code via malicious web content.

Apple said it is “aware of a report that this issue may have been actively exploited.”

iOS 16.5.1 also fixes an issue that prevents charging with the Lightning to USB 3 Camera Adaptor.

It is unclear at the time of publishing why this upgrade was not released as a Rapid Security Response Update, opposed to a point upgrade. Needless to say due to the severity of these vulnerabilities, it is extremely important you update to iOS 16.5.1 as soon as you can.

iOS 16.5.1 Security Fixes

Kernel

Impact: An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.

Description: An integer overflow was addressed with improved input validation.

WebKit

Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

Description: A type confusion issue was addressed with improved checks.

iOS 16.5.1 Supported Devices

iOS 16.5 will run on all iPhones from iPhone 8 onwards. To be exact:

iPhone 14
iPhone 14 Plus
iPhone 14 Pro
iPhone 14 Pro Max
iPhone 13
iPhone 13 mini
iPhone 13 Pro
iPhone 13 Pro Max
iPhone 12
iPhone 12 mini
iPhone 12 Pro
iPhone 12 Pro Max
iPhone 11
iPhone 11 Pro
iPhone 11 Pro Max
iPhone Xs
iPhone XS Max
iPhone XR
iPhone X
iPhone 8
iPhone 8 Plus
iPhone SE (2nd generation or later)

As normal, to update to iOS 16.5.1, go to your iPhone Settings > General > Software Update and install iOS 16.5.1 when you can.

iOS 16.5.1 fixes two major security flaws

iOS 16.5.1 Security Fixes

Kernel

WebKit

iOS 16.5.1 Supported Devices

iOS 17.4.1 brings Security Fixes

iOS 17.4 brings DMA Compliance and a whole lot more

Google releases March 2024 Android Security Bulletin and Google Device Images

iOS 17.3.1 brings bug fixes

Google releases February 2024 Android Security Bulletin and Google Device Images

iOS 17.3 brings Stolen Device Protection and more

Google releases January 2024 Android Security Bulletin and Google Device Images

iOS 17.2.1 brings bug fixes

Apple bringing stolen device protection in iOS 17.3

iOS 17.2 brings new features and security fixes

Report: 2.6 billion personal records compromised by data breaches in past two years

Google releases December 2023 Android Security Bulletin and Google Device Images

iOS 16.5.1 fixes two major security flaws

iOS 16.5.1 Security Fixes

Kernel

WebKit

iOS 16.5.1 Supported Devices

Rapid Newsletters