Security Architecture, Endpoint/Device Security, Endpoint/Device Security, Security Strategy, Plan, Budget, Vulnerability Management, Patch/Configuration Management, Endpoint/Device Security, Endpoint/Device Security, Endpoint/Device Security

Apple’s iOS 8.4.1 update addresses dozens of security issues

Apple rolled out updates for iOS and iTunes, with the mobile operating system receiving dozens of security-related patches primarily tied to the iPhone 4s, iPad and fifth generation iPod Touch devices.

The iOS 8.4.1 fixes focus on eliminating potential breach points within the mobile devices including (CVE-2015-5766) where AirTraffic may have allowed access to protected parts of the file system. Other issues addressed were (CVE-2015-3778) where a malicious Wi-Fi network may be able to determine networks a device has previously accessed; (CVE-2015-5758) where a memory corruption issue existed in the processing of .tiff files possibly leading to an unexpected application termination; (CVE-2015-3759) where a malicious website may trigger an infinite number of alert messages.

Non-security fixes centered on iCloud Music Library issues, including resolving a problem that couple prevent turning on the library and where tapping the “Love” icon does not receive a response in Beats 1.

Apple also recently released several security updates for Safari 8.0.8, 7.1.8, and 6.2.8. These include (CVE-2015-3729) that fixed a problem where a malicious website could open another site and prompt for user input without a way for the user to tell where the prompt came from and (CVE-2015-3755) to stop a case where visiting a malicious website may lead to user interface spoofing.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.