Yoodley is reader-supported. When you buy through links on our site, we may earn an affiliate commission.
After months of waiting, the iOS 16.6 update is finally here, and its main highlight is its bunch of fixes for different security issues. Apple shares the security content details of all these issues in the recent release notes of the update. Aside from iOS 16.6, Apple has also released iPadOS 16.6, tvOS 16.6, watchOS 9.6, and macOS 13.5 updates, giving you the same details in the release notes.
According to Apple, the update, which arrived as a beta in May, comes with “important bug fixes and security updates.” Last week, Apple offered the release candidate of the update, pushing many to believe that the final release was just around the corner. And now that it is available, we get a view of a list of different security vulnerabilities the Cupertino company has addressed in this update.
In the long list provided by Apple, two of them are described as issues that “may have been actively exploited.” The first is under a kernel vulnerability, with the issue dubbed “CVE-2023-38606.”
“An app may be able to modify sensitive kernel state,” the company writes. “Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1.”
Meanwhile, Apple has also fixed an issue dubbed CVE-2023-37450 under WebKit.
“Processing web content may lead to arbitrary code execution,” it says. “Apple is aware of a report that this issue may have been actively exploited.”
It is important to note that the exploited WebKit and kernel issues were already addressed in Rapid Security Response iOS 16.5.1 (c) and iOS 15.7.1 update, respectively. Despite this, with a long list of other flaws, it makes iOS 16.6 an urgent update that all users need to install. To do it, just go to Settings > General > Software Update.