As part of a major security fix, Apple is now rolling out iOS 12.5.4 to older devices. iOS 12.5.4 addresses a very important issue affecting the security of the device and Safari’s engine WebKit due to memory corruption caused by maliciously crafted code. The software update is being pushed out to iPhone models that are almost 8 years old. The iPhone 5S, iPhone 6 and 6 Plus and iPod touch (6th gen) are eligible devices.
Along with that Apple’s iPad models such as the iPad Air (1st gen), iPad Mini 2, and iPad mini 3 are receiving the update.
It is nothing short of impressive that Apple is taking care of devices that were released way back in 2013. Speaking of which, pretty much unexpectedly, the recently introduced iOS 15 brought support for the iPhone 6S and 6S Plus which were actually heavily rumored to not support the new iOS update.
Go to Settings > General > Software Update to check and update your devices to iOS 12.5.4.
RELATED: Install iOS 15 Developer Beta for free.
iOS 12.5.4 release notes as per Apple
Security
- Impact: Processing a maliciously crafted certificate may lead to arbitrary code execution
- Description: A memory corruption issue in the ASN.1 decoder was addressed by removing the vulnerable code.
- CVE-2021-30737: xerub
WebKit
- Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
- Description: A memory corruption issue was addressed with improved state management.
- CVE-2021-30761: an anonymous researcher
WebKit
- Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
- Description: A use-after-free issue was addressed with improved memory management.
- CVE-2021-30762: an anonymous researcher