This copy is for your personal, non-commercial use only. Distribution and use of this material are governed by our Subscriber Agreement and by copyright law. For non-personal use or to order multiple copies, please contact The Epoch Times Reprints.
Apple released several new software updates across its variety of platforms this week, including iOS 26.0.1, macOS Tahoe 26.0.1, iOS 18.7.1, and several other devices that fixes at least one vulnerability as well as an issue with some iPhones being unable to connect to wi-fi networks.
The company said that the security fix targets a vulnerability in the FontParser for the iPhone 11 and later, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 8th generation and later, iPad mini 5th generation and later, macOS Tahoe 26.0.1, macOS Sequoia 15.7.1, macOS Sonoma 14.8.1, and visionOS 26.0.1
According to the firm, the vulnerability meant that “processing a maliciously crafted font may lead to unexpected app termination or corrupt process memory.”
Apple did not go into specifics about the vulnerability, noting that it does not “disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available.” The company also did not indicate whether the bug is being actively exploited.
The flaw, according to anti-virus software company MalwareBytes, “was discovered internally by Apple and allows an attacker to craft a malicious font that can cause apps to crash or corrupt process memory, potentially leading to arbitrary code execution.”
“An out-of-bounds write vulnerability means that the attacker can manipulate parts of the device’s memory that should be out of their reach,” the company’s blog stated. “Such a flaw in a program allows it to read or write outside the bounds the program sets, enabling attackers to manipulate other parts of the memory allocated to more critical functions. Attackers can write code to a part of the memory where the system executes it with permissions that the program and user should not have.”
One security researcher, Johannes Ullrich of the SANS Technology Institute, wrote in a post that it’s not clear if the bug is “exploitable for remote code execution.”
The iOS update that was released this week also fixes potential iPhone 17 wi-fi and Bluetooth connection issues and a problem where a “small number of iPhone users” were “unable to connect to a cellular network after updating to iOS 26.”
It also fixes a problem when taking photos with the iPhone 17, iPhone Air, and iPhone 17 Pro models, an issue with app icons, and the VoiceOver service, according to Apple’s release notes. The update also includes several new features such as different layout options, enhanced call screening that allows people to screen calls from incoming unknown numbers, and more screening for unknown text message senders.
How to Update
Apple iOS or macOS systems that are configured for automatic updates will likely receive the patch during the next update cycle or have already automatically received it. However, people who use manual updates will have to take additional actions.
For iPhone, iPad, and other iOS device users, they are advised to navigate to Settings, tap General, and then tap Software Update.
For macOS users, they should navigate to the Apple menu on the upper-left corner, click System Settings, select General on the sidebar, and then click Software Update on the right.
Jack Phillips is a breaking news reporter who covers a range of topics, including politics, U.S., and health news. A father of two, Jack grew up in California's Central Valley. Follow him on X: https://twitter.com/jackphillips5
