The major iOS 16.4 update was released two days ago. If you haven’t updated to it yet, then you can download it over the air or through our iOS 16.4 IPSW links here. The new update brings a number of new features and bug fixes to iPhone and iPad, which you can read all about here.
However, now it looks like Apple has also fixed a large number of security exploits with the recent update. This was revealed on Apple’s security content page for iOS 16.4 and iPadOS 16.4. According to this page, a total of 32 security exploits have been fixed in iOS 16.4.
The security exploits, which have been fixed related to a wide range of components including Apple Neural Engine, Calendar, Camera, CarPlay, Bluetooth, Find My, iCloud, Safari, Shortcuts, and more.
Most notably, Apple has also fixed 2 exploits related to Kernel, both of which could have allowed an app to execute arbitrary code.
Available for: iPhone 8 and later, iPad Pro (all models), iPad Air 3rd generation and later, iPad 5th generation and later, and iPad mini 5th generation and later
Impact: An app with root privileges may be able to execute arbitrary code with kernel privileges
Description: The issue was addressed with improved memory handling.
CVE-2023-27933: sqrtpwn– Apple
Many of the exploits that were fixed in iOS 16.4 were also fixed in macOS Ventura 13.3. watchOS 9.4 and tvOS 16.4.
With so many security-related bugs getting fixed with iOS 16.4, it is a no-brainer for everyone to update their iPhone and iPad to it at the earliest.