Yoodley is reader-supported. When you buy through links on our site, we may earn an affiliate commission.

Aside from overheating and bug fixes, the iOS 17.0.3 update includes security content. According to the iPhone maker, the update addresses two actively exploited issues.

According to Apple’s document, the first of the two CVEs, CVE-2023-42824, could lead to local attacker privilege elevation. CVE-2023-5217, on the other hand, could cause a buffer overflow that could result in arbitrary code execution.

Here are more details about them:

Kernel

Available for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later

Impact: A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6.

Description: The issue was addressed with improved checks.

CVE-2023-42824

WebRTC

Available for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later

Impact: A buffer overflow may result in arbitrary code execution

Description: The issue was addressed by updating to libvpx 1.13.1.

WebKit Bugzilla: 262365

CVE-2023-5217

Given that the update not only addressed the overheating issue in iPhone 15 models and comes with security fixes, it is recommended to immediately update your devices as soon as possible. iOS 17-capable devices, which are iPhone XR and later models, can now get the update by going to Settings > General > Software Update. On the page, users can get the update with a build number of 21A360.

LEAVE A REPLY

Please enter your comment!
Please enter your name here