Apple Security Advisory 07-29-2025-2

Apple Security Advisory 07-29-2025-2 - iPadOS 17.7.9 addresses out of bounds access, out of bounds read, and use-after-free vulnerabilities...

Apple多款产品 安全漏洞

Apple iOS and others are products of Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple tvOS is an operating system for smart TVs.Apple iPadOS is an operating system for iPad tablets.Apple iOS is an operating system developed for mobile devices.Apple tvOS is an operatin...

Apple macOS和Apple iPadOS 安全漏洞

Apple macOS and Apple iPadOS are both products of Apple Inc. Apple macOS is a specialized operating system developed for Mac computers, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple macOS and Apple iPadOS, which arises from a reuse-after-releas...

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple macOS is a specialized operating system developed for Mac computers. A security vulnerability exists in several Apple products that stems from an input validation issue that could...

Apple macOS和Apple iPadOS 安全漏洞

Apple macOS and Apple iPadOS are products of Apple Inc. Apple macOS is a specialized operating system developed for Mac computers, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple macOS and Apple iPadOS that stems from a permissions issue that cou...

Apple多款产品 安全漏洞

Apple Safari and others are products of Apple Inc. Apple Safari is a web browser that is the default browser that comes with the Mac OS X and iOS operating systems. apple iOS is an operating system developed for mobile devices. apple watchOS is a smartwatch operating system. A security...

多款Apple产品安全漏洞

Apple Safari and others are products of Apple Inc. Apple Safari is a web browser that is the default browser that comes with the Mac OS X and iOS operating systems. apple iOS is a set of operating systems developed for mobile devices. apple iPadOS is a set of operating systems for the iPad tablet...

多款Apple产品安全漏洞

Apple Safari and others are products of Apple Inc. Apple Safari is a web browser that is the default browser that comes with the Mac OS X and iOS operating systems. apple iOS is a set of operating systems developed for mobile devices. apple iPadOS is a set of operating systems for the iPad tablet...

CVE-2025-43265

An out-of-bounds read in WebKit/WebKitGTK when processing malicious web content may disclose internal app states. CVE-2025-43265 is fixed in Safari 18.6 and corresponding platform updates (watchOS 11.6, visionOS 2.6, iOS 18.6, iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6). Related advisories (Debia...

CVE-2025-43216

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing maliciously crafted web content may lead to an unexpected Safari crash...

CVE-2025-43186

The issue was addressed with improved memory handling. This issue is fixed in iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7, tvOS 18.6, visionOS 2.6, watchOS 11.6. Parsing a file may lead to an unexpected app termination...

CVE-2025-43217

CVE-2025-43217 affects Apple iPadOS and iOS where privacy indicators for microphone or camera access may not be correctly displayed. The issue is mitigated by Apple in iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6 through added logic changes. CVSSv3.1 metrics indicate a Local attack vector, Low confide...

CVE-2025-43217

The issue was addressed by adding additional logic. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9. Privacy Indicators for microphone or camera access may not be correctly displayed...

CVE-2025-43217

The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6. Privacy Indicators for microphone or camera access may not be correctly displayed...

CVE-2025-31276

CVE-2025-31276 affects Apple iOS/iPadOS (notably iOS 18.6, iPadOS 18.6, and iPadOS 17.7.9) where remote content could be loaded in certain contexts despite the user setting to disable remote images. The root cause is described as an issue in state management. Apple’s advisories indicate the vulne...

CVE-2025-31276

This issue was addressed through improved state management. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9. Remote content may be loaded even when the 'Load Remote Images' setting is turned off...

CVE-2025-31276

This issue was addressed through improved state management. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9. Remote content may be loaded even when the 'Load Remote Images' setting is turned off...

CVE-2025-43230

The issue was addressed with additional permissions checks. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. An app may be able to access user-sensitive data...

CVE-2025-43227

CVE-2025-43227 affects WebKit/WebKitGTK in Apple Safari/WebKitGTK-based products where processing maliciously crafted web content could disclose sensitive user information. The vulnerability is mitigated by software updates: Safari 18.6; iOS 18.6 and iPadOS 18.6; macOS Sequoia 15.6; tvOS 18.6; wa...

CVE-2025-43211

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing web content may lead to a denial-of-service...