Apple Releases New Security Updates to Protect Safari Against the Spectre Attack

9 January 2018

When the news broke last week of two side-channel attacks – Spectre and Meltdown – Apple stated that it had already released mitigations for Meltdown in iOS 11.2, macOS 10.13.2, and tvOS 11.2, and that fixes for Spectre would follow. Today the firm has released a trio of security updates aimed at protecting Safari and WebKit against the Spectre attack. The three updates make changes to iOS, macOS and the Safari browser itself.

As Chris Swan noted in his report for InfoQ over the weekend, browsers are a particular target for the Spectre vulnerability since they can potentially be exploited via JavaScript running in the browser. Similar patches have already been released for Chrome and Firefox.

As is typical, Apple provides few details beyond making it clear which vulnerabilities are targeted, but the firm does thank the researchers responsible for finding the bugs, including Jann Horn of Google Project Zero, in the release notes.

Read full news article on InfoQ

Date:

9 January 2018

Categorie(s):

NEWS

Tag(s):

Attacks, Browsers, Internet, iOS, iOS 11, Meltdown, Mobile Development, Releases, Safari

What Are Phishing Scams And How You Can Avoid Them?1 May 2024
10 ways to turn off Windows’ worst ads1 May 2024
Infosecurity Europe Keynote: Building Strong Teams and Driving Change with F1’s Claire Williams1 May 2024
LLM deployment flaws that catch IT by surprise1 May 2024
Azure Virtual Network Flow Logs for Enhanced Network Monitoring and Security Analysis1 May 2024