iOS 17.4.1 and macOS 14.4.1 have been released for all users following the major iOS 17.4/macOS 14.4 updates. Apple has now disclosed the significant security patches that come with the latest updates for iPhone, Mac, and more.
iOS 17.4.1 was initially launched with general release notes, with Apple later providing detailed security specifics on its website. The same two vulnerability fixes are included in macOS 14.4.1 which was also released today.
What are the iOS 17.4.1 and macOS 14.4.1 security fixes?
- CoreMedia security patch addressing an issue that could result in “arbitrary code execution”
- WebRTC flaw patch also addressing an issue that could lead to “arbitrary code execution”
These vulnerabilities were not previously exploited. macOS Ventura 13.6.6, iOS 16.7.7, and visionOS 1.1.1 have also received the same patches.
While iOS 17.4.1 did not introduce any other user-facing upgrades or notable bug fixes, macOS 14.4.1 resolved issues related to USB hubs, Java-based apps, and more:
Here are the complete iOS 17.4.1 security release notes:
CoreMedia
Available for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later
Impact: Processing an image may lead to arbitrary code execution
Description: An out-of-bounds write issue was addressed with improved input validation.
CVE-2024-1580: Nick Galloway of Google Project Zero
WebRTC
Available for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later
Impact: Processing an image may lead to arbitrary code execution
Description: An out-of-bounds write issue was addressed with improved input validation.
CVE-2024-1580: Nick Galloway of Google Project Zero
FTC: We use income earning auto affiliate links. More.
