Urgent iOS Update: India’s official computer security organization CERT-In or the Indian Computer Emergency Response Team has urged iPad and iPhone users to urgently update their devices with the latest updates. iOS and iPadOS software update. These updates – iOS 14.7.1 and iPadOS 14.7.1 – were released by Cupertino last week to fix some critical bugs from the previous version. A zero-day memory corruption vulnerability has been fixed in the update, and this bug has been confirmed by the government to be actively exploited by attackers. Warning to users, CERT-In said that if attackers were to successfully exploit this bug, the attacker could execute an arbitrary code and gain elevated privileges on the targeted device.
Read also | Twitter will pay up to 3 lakh to hackers who find bias in its image cropping algorithm
As a result, the organization issued the security alert for all iPhone and iPad users, asking them to update the system, as the bug affects all iPhones, including versions 6 and later, all models of iPad Pro, iPad Air 2 and later, and iPad fifth generation and later devices. Apart from these, iPad Mini 4 and later models, iPod Touch (7th generation) as well as macOS Big Sur devices have also been affected. The macOS Big Sur 11.5.1 update also contains the fix.
If not updated, the vulnerability can be used by the attacker to execute malicious code and gain access to the device remotely, the CERT-In said.
The bug is present in IOMobileFrameBuffer of iOS and iPadOS due to memory corruption issue without proper memory management. The cybersecurity organization said attackers with kernel privileges could exploit it with the help of a malicious application.
The update can be installed on iPhones and iPads by going to Settings, then the General tab. In this case, users could go to the Software Update tab and then manually check for the update they want to install. Meanwhile, Mac users can go to System Preferences from the menu and click on Software Update.