Apple released security updates for many of its product including iOS, watchOS, Safari, tvOS, iTunes and fixed several vulnerabilities.
iOS 12.1 released and fixed around 31 vulnerabilities that belong to AppleAVD, Contacts, FaceTime, Graphics Driver, ICU, IPSec, Kernel, Messages etc.
Natalie Silvanovich of Google Project Zero contributed more in this fixes and he reported several critical vulnerabilities in iOS that allows an attacker to execute arbitrary code on the previous version of iOS.
Apple also Fixed a pair of interesting vulnerabilities in FaceTime that were discovered and reported by Natalie Silvanovich of Google Project Zero. CVE-2018-4366 would allow an attacker to view memory contents in CVE-2018-4367.
Safari 12.0.1 released and fixed 12 vulnerabilities that affected Safari Reader, WebKit with different vulnerabilities such as arbitrary code execution, Multiple memory corruption.
Name and information link | Available for | Release date |
---|---|---|
Safari 12.0.1 | macOS Sierra 10.12.6, macOS High Sierra 10.13.6, and macOS Mojave 10.14 | 30 Oct 2018 |
iCloud for Windows 7.8 | Windows 7 and later | 30 Oct 2018 |
iTunes 12.9.1 | Windows 7 and later | 30 Oct 2018 |
watchOS 5.1 | Apple Watch Series 1 and later | 30 Oct 2018 |
iOS 12.1 | iPhone 5s and later, iPad Air and later, and iPod touch 6th generation | 30 Oct 2018 |
tvOS 12.1 | Apple TV 4K and Apple TV (4th generation) | 30 Oct 2018 |
macOS Mojave 10.14.1, Security Update 2018-001 High Sierra, Security Update 2018-005 Sierra | macOS Sierra 10.12.6, macOS High Sierra 10.13.6, macOS Mojave 10.14 | 30 Oct 2018 |
Also you can Learn how to update the iOS software on your iPhone, iPad, or iPod touch.
Microsoft Released Security Updates & Fixed 49 Vulnerabilities that Affected Microsoft Products
Cisco Released Security Updates & Fixed 37 Vulnerabilities that Affected Cisco Products
Mozilla Firefox Releases 62.0.3 & Security Updates for 2 High Critical Vulnerabilities
The Evasive Panda group deployed a new C# framework named CloudScout to target a Taiwanese…
Researchers warn of ongoing spear-phishing attacks by Russian threat actor Midnight Blizzard targeting individuals in…
The Ukrainian Cyber Emergency Response Team discovered a targeted phishing campaign launched by UAC-0215 against…
Researchers have identified a network of compromised devices, CovertNetwork-1658, used by Chinese threat actors to…
A security researcher discovered a vulnerability in Windows theme files in the previous year, which…
The ongoing Meta malvertising campaign, active for over a month, employs an evolving strategy to…