IOS 11.2.2 Update is Released With Spectre Security Fix

3. Make sure your web browser gets updates

3. Make sure your web browser gets updates

Two recently-discovered security exploits dubbed "Meltdown" and "Spectre" was discovered to be affecting all major processors made in the past twenty years.

As Chris Swan noted in his report for InfoQ over the weekend, browsers are a particular target for the Spectre vulnerability since they can potentially be exploited via JavaScript running in the browser. The fixes were rolled out in vesion 11.2 of the iOS, 10.13.2 for the MacOS, and 11.2 for the tvOS.

Analysis of these techniques revealed that while they are extremely hard to exploit, even by an app running locally on a Mac or iOS device, they can be potentially exploited in JavaScript running in a web browser.

Late last week, Apple confirmed that its iOS-based iPhones and iPads along with its Mac computers are vulnerable to the Meltdown and Spectre exploits (which we have covered in great detail over the past week). Additionally, for OS X El Capitan and macOS Sierra users, Apple released Safari 11.0.2.

More news: Democrats force Senate vote on net neutrality repeal

Last week, it also announced that it would be addressing the Spectre exploit in a series of security updates to the Safari browser and WebKit platforms. iOS 11.2.2, presumably, contains the majority (if not all) of those updates.

Apple today released iOS 11.2.2 to the iPhone and iPad. Both of those updates also include patches that mitigate Spectre's security risks.

The Spectre patch is rolling out as part of iOS 11.2.2 and a supplemental update for macOS High Sierra 10.13.2. It can be downloaded by navigating to Settings General Software Update.

Latest News