iOS 17.5 brings Web Distribution, Repair State and more

Apple has released iOS 17.5, bringing Web Distribution, Repair State, Tracking notifications, Pride Collection wallpapers, and Game/Offline Mode for Apple News+ subscribers, along with design changes and security fixes.

Cross-Platform Tracking Protection notifications alert users “if a compatible Bluetooth tracker they do not own is moving with them, regardless of what operating system the device is paired with.”

The Detecting Unwanted Location Trackers (DULT) standard is a cross-platform initiative designed to prevent Bluetooth trackers like Apple AirTags from being misused to track people without their knowledge.

The specification allows iOS and Android devices to detect and alert you when a tracker that conforms to the standard is traveling with you and its owner is not.

Apple has already implemented protections to prevent AirTag stalking, and Cross-Platform Tracking Protection implements some of those same safeguards for devices paired to non-Apple phones.

Then there’s Repair State, which means that if you are sending your iPhone to be fixed, users need not turn off Find My when sending their iPhone to Apple to repair.

For European Union users only, there’s a big new feature, Web Distribution, which means apps can be downloaded on to the iPhone from the web.

Apple News+ picks up a new word game called Quartiles, part of the wider trend of news organizations embracing games as growth drivers. Quartiles, Crossword, and Mini Crossword also track player stats and win streams, and the Today+ and News+ tabs will also load without an Internet connection.

iOS 17.5 and iPadOS 17.5 Security Fixes

AppleAVD

Impact: An app may be able to execute arbitrary code with kernel privileges

Description: The issue was addressed with improved memory handling.

AppleMobileFileIntegrity

Impact: An attacker may be able to access user data

Description: A logic issue was addressed with improved checks.

AVEVideoEncoder

Impact: An app may be able to disclose kernel memory

Description: The issue was addressed with improved memory handling.

Find My

Impact: A malicious application may be able to determine a user’s current location

Description: A privacy issue was addressed by moving sensitive data to a more secure location.

Kernel

Impact: An attacker may be able to cause unexpected app termination or arbitrary code execution

Description: The issue was addressed with improved memory handling.

Libsystem

Impact: An app may be able to access protected user data

Description: A permissions issue was addressed by removing vulnerable code and adding additional checks.

Maps

Impact: An app may be able to read sensitive location information

Description: A path handling issue was addressed with improved validation.

MarketplaceKit

Impact: A maliciously crafted webpage may be able to distribute a script that tracks users on other webpages

Description: A privacy issue was addressed with improved client ID handling for alternative app marketplaces.

Notes

Impact: An attacker with physical access to an iOS device may be able to access notes from the lock screen

Description: This issue was addressed through improved state management.

RemoteViewServices

Impact: An attacker may be able to access user data

Description: A logic issue was addressed with improved checks.

Screenshots

Impact: An attacker with physical access may be able to share items from the lock screen

Description: A permissions issue was addressed with improved validation.

Shortcuts

Impact: A shortcut may output sensitive user data without consent

Description: A path handling issue was addressed with improved validation.

Sync Services

Impact: An app may be able to bypass Privacy preferences

Description: This issue was addressed with improved checks

Voice Control

Impact: An attacker may be able to elevate privileges

Description: The issue was addressed with improved checks.

WebKit

Impact: An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication

Description: The issue was addressed with improved checks.

iOS 17.5 Supported Devices

iPhone 15
iPhone 15 Plus
iPhone 15 Pro
iPhone 15 Pro Max
iPhone 14
iPhone 14 Plus
iPhone 14 Pro
iPhone 14 Pro Max
iPhone 13
iPhone 13 mini
iPhone 13 Pro
iPhone 13 Pro Max
iPhone 12
iPhone 12 mini
iPhone 12 Pro
iPhone 12 Pro Max
iPhone 11
iPhone 11 Pro
iPhone 11 Pro Max
iPhone Xs
iPhone XS Max

As normal, to update to iOS 17.5 go to your iPhone Settings > General > Software Update and install iOS 17.5 as soon as you possibly can.

iOS 17.5 brings Web Distribution, Repair State and more

iOS 17.5 and iPadOS 17.5 Security Fixes

iOS 17.5 Supported Devices

Google releases July 2024 Android Security Bulletin and Google Device Images

BlackBerry investigating Cylance Data Breach

Google releases June 2024 Android Security Bulletin and Google Device Images

iOS 17.5.1 brings fix for re-emerging photos and other bug fixes

Apple and Google deliver unwanted tracking alert Support in iOS and Android

BlackBerry launches rebranded CylanceGUARD as CylanceMDR

Google releases April 2024 Android Security Bulletin and Google Device Images

Apple releases iOS 17.5 Beta for Developers

iOS 17.4.1 brings Security Fixes

iOS 17.4 brings DMA Compliance and a whole lot more

Google releases March 2024 Android Security Bulletin and Google Device Images

iOS 17.3.1 brings bug fixes

iOS 17.5 brings Web Distribution, Repair State and more

iOS 17.5 and iPadOS 17.5 Security Fixes

iOS 17.5 Supported Devices

Rapid Newsletters