(ZeroClicks.ai Lab), and Ian de Marcellusĭescription: A privacy issue was addressed with improved handling of files.ĬVE-2024-23223: Noah Roskin-Frazee and Prof. Impact: An app may be able to access sensitive user dataĭescription: This issue was addressed with improved redaction of sensitive information.ĬVE-2024-23207: Noah Roskin-Frazee and Prof.
Impact: An attacker may be able to decrypt legacy RSA PKCS#1 v1.5 ciphertexts without having the private keyĭescription: A timing side-channel issue was addressed with improvements to constant-time computation in cryptographic functions.ĬVE-2024-23208: and lime From TIANGONG Team of Legendsec at QI-ANXIN Group Impact: An app may be able to execute arbitrary code with kernel privilegesĭescription: The issue was addressed with improved memory handling.ĬVE-2024-23212: Ye Zhang of Baidu SecurityĪvailable for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later
Available for devices with Apple Neural Engine: iPhone XS and later, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 8th generation and later, and iPad mini 5th generation and later