macOS 13.4 and iOS 16.5 fix three “zero day” flaws

The final versions of macOS 13.4, iOS 16.5 and iPadOS 16.5 and of watchOS 9.5 are therefore available since tonight. If the few new features of these updates do not thrill you more than that to push the install button, know that these versions also and above all integrate a list of fixes as long as a day without a hot raisin bun (iOS, macOS, watchOS).

And among these vulnerabilities, three in particular stand out since they are ” zero day » : in other words, they can currently be exploited by pirates. Numbered CVE-2023-32409, CVE-2023-28204 and CVE-2023-32373, they all concern WebKit, Safari’s rendering engine. The first “breaks” the Web Content sandbox, the second displays sensitive information, the third can allow the execution of arbitrary code. Two of them had been fixed by the urgent security update for macOS 13.3.1 and iOS 16.4.1.

Suffice to say that it is in your best interest to download these updates and install them right away! Apple is also releasing iOS 15.7.6 with similar security fixes for devices that aren’t compatible with iOS 16. macOS 11.7.7 (Big Sur) and macOS 12.6.6 (Monterey) are also available.

Previous versions of iOS and macOS also fixed zero-day flaws.