Yoodley is reader-supported. When you buy through links on our site, we may earn an affiliate commission.
Aside from overheating and bug fixes, the iOS 17.0.3 update includes security content. According to the iPhone maker, the update addresses two actively exploited issues.
According to Apple’s document, the first of the two CVEs, CVE-2023-42824, could lead to local attacker privilege elevation. CVE-2023-5217, on the other hand, could cause a buffer overflow that could result in arbitrary code execution.
Here are more details about them:
Kernel
Available for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later
Impact: A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6.
Description: The issue was addressed with improved checks.
CVE-2023-42824
WebRTC
Available for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later
Impact: A buffer overflow may result in arbitrary code execution
Description: The issue was addressed by updating to libvpx 1.13.1.
WebKit Bugzilla: 262365
CVE-2023-5217
Given that the update not only addressed the overheating issue in iPhone 15 models and comes with security fixes, it is recommended to immediately update your devices as soon as possible. iOS 17-capable devices, which are iPhone XR and later models, can now get the update by going to Settings > General > Software Update. On the page, users can get the update with a build number of 21A360.