Apple on Monday introduced the discharge of main iOS and macOS platform updates with fixes for a complete of greater than 50 vulnerabilities.
iOS 26 and iPadOS 26 have been launched for the most recent technology iPhone and iPad units with fixes for 27 distinctive CVEs that would result in reminiscence corruption, info disclosure, crashes, and sandbox escapes.
WebKit acquired the most important variety of fixes, at 5, for security defects that would result in course of crashes, Safari crashes, or might enable web sites to entry sensor info with out consent.
The iOS replace additionally fixes vulnerabilities in Apple Neural Engine, Bluetooth, CoreAudio, CoreMedia, Kernel, Safari, Sandbox, Siri, System, and a dozen different parts.
Apple launched macOS Tahoe 26 with patches for 38 distinctive CVEs, together with 11 that have been resolved in iOS 26 and iPadOS 26 as properly.
Essentially the most affected parts embrace WebKit, which acquired fixes for 5 bugs, AppleMobileFileIntegrity and SharedFileList with patches for 4 points every, and Bluetooth and Sandbox with fixes for 3 flaws every.
Different parts that acquired patches embrace AppKit, AppSandbox, ATS, CoreMedia, CoreServices, FaceTime, Basis, GPU Driver, ImageIO, Notification Heart, RemoteViewServices, Safety Initialization, Highlight, and StorageKit.
On Monday, Apple additionally launched iOS 18.7 and iPadOS 18.7 with fixes for 12 security defects, and rolled out iOS 16.7.12, iPadOS 16.7.12, iOS 15.8.5, and iPadOS 15.8.5 with patches for CVE-2025-43300, an ImageIO flaw exploited in assaults focusing on WhatsApp customers. Apple launched the primary patches for the vulnerability on August 20.
The Cupertino tech firm delivered hefty units of patches for macOS Sequoia 15.7 and macOS Sonoma 14.8, and launched tvOS 26, watchOS 26, and visionOS 26 with patches for almost two dozen vulnerabilities every.
Safari 26 was rolled out with fixes for seven security defects, whereas Xcode 26 arrived with patches for 5 bugs.
Apart from CVE-2025-43300, Apple makes no point out of any of the resolved vulnerabilities being exploited within the wild. Extra info could be discovered on the corporate’s security releases web page.
