ADVERTISEMENT

Apple urges users to install security update to avoid ‘memory corruption issue’

Updated - March 11, 2021 06:16 pm IST

Published - March 09, 2021 11:43 pm IST - Hyderabad

Apple has pushed out an ecosystem-wide security update to fix a memory corruption issue across browser engine WebKit

Divya Kala Bhavani

(Subscribe to our Today's Cache newsletter for a quick snapshot of top 5 tech stories. Click here to subscribe for free.)

On March 8, Apple Inc urged users to update their software across their devices, explaining, “Keeping your software up-to-date is one of the most important things you can do to maintain your Apple product’s security,” on its security updates page.

ADVERTISEMENT

Apple’s WebKit experienced “a memory corruption issue” that has been addressed “with improved validation.” Said error saw “processing maliciously crafted web content may lead to arbitrary code execution.”

Sign up for newsletters, unlock features and do more on The Hindu
LOG IN
Support our reporting.
SUBSCRIBE NOW

WebKit is a C++ browser engine, developed by Apple for use in its Safari web browser. The tool is also used by Apple Mail, the App Store, and various apps on the macOS and iOS operating systems, which explains the urgency of the situation.

According to CyberSecurity Help’s vulnerability database, this type of bug (CVE-2021-1844 — reported by Clément Lecigne of Google’s Threat Analysis Group, and Alison Huffman of Microsoft Browser Vulnerability Research) “exists due to a boundary error when processing web content in WebKit. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.” Cybersecurity Help adds, “This vulnerability can be exploited by a remote non-authenticated attacker via the Internet,” but also points out “We are not aware of malware exploiting this vulnerability.”

ADVERTISEMENT

Apple, as a company “doesn’t disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are generally available.”

Apple users can head to their Settings > General > Software Update to initiate the update if it has not happened yet. The update has been made available for users with devices running macOS Big Sur, and Safari on macOS Catalina and macOS Mojave, Apple Watch Series 3 and later, iPhone 6s and later, as well as iPad Air 2 and later, iPad mini 4 and later, and even iPod touch (7th generation).

This is a Premium article available exclusively to our subscribers. To read 250+ such premium articles every month
unlock them all
SUBSCRIBE NOW
If you're already a subscriber
You have exhausted your free article limit.
Please support quality journalism.
SUBSCRIBE NOW
or read this article by Downloading The Hindu News app
If you're already a subscriber
You have exhausted your free article limit.
Please support quality journalism.
SUBSCRIBE NOW
or read this article by Downloading The Hindu News app
If you're already a subscriber
The Hindu operates by its editorial values to provide you quality journalism.
Support our reporting.
SUBSCRIBE NOW
This is your last free article.
to read unlimited content from The Hindu
SUBSCRIBE NOW
Get The Hindu News App on
Get The Hindu News App on

ADVERTISEMENT

ADVERTISEMENT

To enjoy additional benefits

Make most of your subscription

Crossword+

CONNECT WITH US