Apple users are supposed to import a security update flight to protect themselves against crashes and/or corrupt RAM. Lepshoots for further attacks can be non -correct RAM. Both iPhones as well as iPads and various Apple computers are affected. Therefore, the Citizens’ Cert of the German Federal Office for Safety in Information Technology pushes to the update on Monday evening. The specialist institution warns of possible denial of service attacks, here in the form of repeated crashes.
According to Apple, the following operating systems are affected:
The error corrected with the updates lies in the Font Parser. This is the routine that helps fonts to correctly represent. Unfortunately, the font Parser can be tempted by manipulated fonts to write storage areas that are not actually due in it.
Fonts come via websites, documents, software
The attackers could “take advantage of the weak point to bring the device to the crash or to damage the process memory. This enabled other, non -specified attacks,” the Bürgercert informs. For successful exploitation, it is sufficient to open a malignant application or a malignant document. Because fonts are often embedded in websites, documents or applications.
The bug is registered as CVE 2025-43400. CVE stands for common vulnerabilities and exposures (general weaknesses and hazards) and has been serving security gaps internationally internationally for more than 25 years. Each known security gap can receive its own, unique number there.
Discover more from Apple News
Subscribe to get the latest posts sent to your email.