【iPadOS 16.6】不具合バグ修正情報・新機能・変更点・いつ公開・インストール時間・やり方など

【iPadOS 16.6】不具合バグ修正情報・新機能・変更点・いつ公開・インストール時間・やり方など applekyo.com/news/ipados166/

iPadOS 16.6 配信開始日は2023年07月25日 火曜日 (JST) 記事のアップデート情報 2023年07月25日 火曜日 (JST) 記事公開 OSリリース情報 今回 2023年07月25日 火曜日 (JST)に最新のOS、iPadOS 16.6 がリリースされました。 今回のアップデートは「中型セキュリティ修正アップデート」です。「このアップデートには重要なバグ修正とセキュリティアップデートが含まれ、すべてのユーザに推奨されます」のでアップデートは必ず行いましょう。 参考 前回2023年07月13日 木曜日 (JST)に一つ前のOS、iPadOS 16.5.1(c) がリリースされました。 情報は公式ページにも公開中 Appleの公式サイトはこちらです 大きな不具合報告 2023年07月25日 火曜日…

View On WordPress

iCloud Bypass Official iPadOS 16.6: Everything You Need to Know

In the ever-evolving landscape of technology, operating systems like iPadOS continue to push boundaries, offering new features and enhanced security. With the recent release of iPadOS 16.6, users are excitedly exploring the improvements and changes. One significant aspect that often captures attention is the iCloud Bypass feature. In this article, we'll delve into the details of iCloud Bypass iPadOS 16.6, how it works, its benefits, and address some common queries that users might have.

Understanding iCloud Bypass

What is iCloud Bypass?

iCloud Bypass is a feature designed to unlock a locked device to an iCloud account, usually because of forgotten passwords or lost devices. This feature helps users regain access to their iPads without requiring the original iCloud credentials.

How Does iCloud Bypass Work on iPadOS 16.6?

With the rollout of iPadOS 16.6, Apple has introduced an improved iCloud Bypass mechanism. When a user initiates an iCloud Bypass request, the system undergoes a series of security checks to verify the legitimacy of the request. Once verified, the device is disassociated from the previous iCloud account, allowing the user to set up a new account or restore it from a backup.

Benefits of iCloud Bypass on iPad 16.6

Recovery of Locked Devices

One of the most significant advantages of iCloud Bypass is the ability to recover locked devices. Whether a user forgets their iCloud password or inherits a locked device, this feature prevents devices from becoming obsolete due to forgotten credentials.

Enhanced User Experience

iPadOS 16.6's improved iCloud Bypass contributes to a smoother and more user-friendly experience. The process is streamlined, reducing the time it takes to regain access to a locked device.

Data Retrieval

In situations where a user is locked out of their iCloud account, bypassing the iCloud lock allows them to retrieve their data and information stored on the device. This prevents data loss and ensures important files remain accessible.

Reasons for iCloud Bypass

Forgotten Apple ID: If you can't recall your Apple ID and password, bypassing iCloud becomes necessary to regain access to your iPad.

Second-Hand Devices: When purchasing a pre-owned iPad with an existing iCloud lock, bypassing it enables you to use the device as your own.

Smooth Setup: Bypassing iCloud on a freshly updated iPadOS 16.6 allows for a hassle-free setup without authentication hiccups.

How to Perform iCloud Bypass on iPad 16.6?

Step 1: Access the iCloud Bypass Feature

To initiate the iCloud Bypass process on iPadOS 16.6, go to the "Settings" menu, then select "iCloud" and "Unlock Device."

Step 2: Verification

The system will prompt you to verify your identity through various security measures, such as biometric authentication or answering security questions.

Step 3: Bypass Activation

Once your identity is confirmed, the iCloud Bypass feature will begin the process of disassociating the device from the previous iCloud account.

Step 4: Set Up a New Account

After the device is successfully bypassed, you can set up a new iCloud account or restore it from a backup.

Common FAQs About iCloud Bypass

Is iCloud Bypass Legal?

Yes, iCloud Bypass is legal, as long as it's performed with the intention of unlocking devices that belong to you or that you have legal ownership of.

Can iCloud Bypass Be Reversed?

Yes, iCloud Bypass can be reversed. Users can revert to the original iCloud account or set up a new one after the bypass.

Is Data Loss Possible During iCloud Bypass?

No, iCloud Bypass is designed to prevent data loss. Your data should remain intact throughout the process.

Are There Any Risks Associated With iCloud Bypass?

While iCloud Bypass is generally safe, there's always a slight risk involved when altering device settings. It's recommended to proceed with caution and ensure you have a backup of your data.

Can iCloud Bypass Be Used for Unauthorized Access?

No, iCloud Bypass is not intended for unauthorized access. It's meant to help users regain access to their own devices.

Conclusion

In conclusion, iCloud Bypass on iPadOS 16.6 is a valuable feature that ensures users can regain access to their locked devices without the hassle of forgotten passwords or lost credentials. The improved process in iPadOS 16.6 enhances the user experience while also providing a safeguard against data loss. As you explore the new capabilities of iPadOS 16.6, iCloud Bypass stands out as a powerful tool in the realm of device security and accessibility.

Apple は、iOS デバイスを NSO の Pegasus スパイウェアに感染させるために積極的に悪用され、CVE-2023-41064 として追跡されるゼロデイ脆弱性を修正するために、古い iPhone 用のセキュリティ アップデートをリリースしました。 CVE-2023-31064 はリモート コード実行の欠陥であり、悪意を持って作成された画像を iMessage 経由で送信することで悪用されます。 として使用され、 Citizen Lab が今月初めに報告したように、CVE-2023-31064 と CVE-2023-41061 として追跡される 2 番目の欠陥は、BLASTPASS と呼ばれるゼロクリック攻撃チェーン iMessage PassKit の添付ファイルで特別に細工された画像を送信してスパイウェアをインストールします。 。 電話機が添付ファイルを受信して​​処理すると、完全にパッチが適用された iOS (16.6) デバイスにも NSO の Pegasus スパイウェアがインストールされました。 Appleは macOS Ventura 13.5.2、iOS 16.6.1、iPadOS 16.6.1、watchOS 9.6.2の2つの欠陥に対する修正をリリースし 、 警告を発表した。 CISAは連邦政府機関に対し2023年10月2日までにパッチを適用するよう求める にバックポートされ、 このセキュリティ アップデートは、iOS 15.7.9 および iPadOS 15.7.9 、 macOS Monterey 12.6.9 、および macOS Big Sur 11.7.10 これらのデバイスでこの攻撃チェーンが使用されるのを防ぎます。 iOS 15のサポートは1年前の2022年9月に終了したが、ベンダーは依然としてMontereyとBig Surをサポートしていることは注目に値する。 このセキュリティアップデートは、iPhone 6sのすべてのモデル、iPhone 7、iPhone SEの第1世代、iPad Air 2、iPad miniの第4世代、iPod touchの第7世代を対象としています。 macOS コンピュータでは攻撃は観察されていませんが、この欠陥は理論的にはここでも悪用可能であるため、セキュリティ アップデートを適用することが強く推奨されます。 今年の初め以来、Apple は、iOS、macOS、iPadOS、watchOS を実行しているデバイスをターゲットに悪用された合計 13 件のゼロデイを修正しました。 7 月に2 回のゼロデイ (CVE-2023-37450 および CVE-2023-38606) 6 月に3 回のゼロデイ (CVE-2023-32434、CVE-2023-32435、および CVE-2023-32439) 5 月にさらに3 つのゼロデイ (CVE-2023-32409、CVE-2023-28204、および CVE-2023-32373) 4 月の2 つ のゼロデイ (CVE-2023-28206 および CVE-2023-28205) ( 2 月のWebKit ゼロデイ CVE-2023-23529)

Apple、BLASTPASS ゼロデイ修正を古い iPhone にバックポート

Antes do lançamento do beta público do iOS 17, a Apple achou por muito lançar o beta 5 de seu próximo iOS 16.6, iPadOS 16.6, macOS Ventura 13.5, watchOS 9.6 e tvOS 16.6 para desenvolvedores. As compilações beta estão disponíveis em todos os produtos Apple compatíveis e você pode instalá-las agora mesmo gratuitamente. Apple distribui iOS 16.6, iPadOS 16.6, macOS Ventura 13.5, watchOS 9.6 e tvOS 16.6 beta 5 para desenvolvedores iOS 16.6 e iPadOS 16.6 beta 5 podem ser instalados em seu iPhone patível por meio do aplicativo de configurações padrão. Tudo o que você precisa fazer é ir para Configurações > Universal > Atualização de Software > Atualizações Beta e instale o beta relevante em seu iPhone. Certifique-se de que seu ID Apple esteja vinculado à sua conta de desenvolvedor da Apple. Além do iOS 16.6, a Apple também lançou o beta 5 de sua próxima atualização do watchOS 9.6 para desenvolvedores. Ao contrário do iOS 16.6, você terá que instalar o perfil de feitio adequado do Apple Developer Center. Depois que o perfil for baixado, basta acessar o aplicativo Apple Watch devotado no seu iPhone e velejar até Universal > Atualização de Software. Certifique-se de que seu Apple Watch atenda aos pré-requisitos necessários para instalar atualizações de software. A Apple também distribuiu o macOS 13.5 beta 5 junto com o iOS 16.6 para os desenvolvedores. A versão beta mais recente pode ser baixada remotamente depois a instalação do perfil de feitio adequado no Apple Developer Center. Depois que o perfil de feitio adequado for instalado, a atualização beta estará disponível por meio do Mecanismo de atualização de software nas configurações do sistema. Por termo, a Apple também lançou o sexto beta para desenvolvedores do tvOS 16.6. Os desenvolvedores podem instalar a versão beta mais recente em seus dispositivos Apple TV compatíveis usando um perfil que pode ser instalado usando o Xcode no Mac. Quanto ao que há de novo nas versões beta mais recentes, é muito cedo para perguntar. Vamos esperar que os desenvolvedores mexam na versão mais recente e encontrem tudo de novo que a empresa adicionou na versão mais recente. Potencialmente, a atualização se concentrará em melhorias ocultas e aprimoramentos de segurança. A empresa também lançou o iOS 16.5.1 com grandes correções de segurança, portanto, verifique isso também. Compartilhe esta história Facebook Twitter

The Ongoing Effort to Counter Zero-Day Threats This Summer

The summer season has not slowed down the release of software updates, with tech behemoths Apple, Google, and Microsoft launching numerous patches to address vulnerabilities that are being exploited in actual attacks. In July, significant bugs were also addressed by enterprise software companies SAP, Citrix, and Oracle. Here is a comprehensive rundown of the major patches rolled out during the month.

Apple’s iOS and iPadOS 16.6 In July, Apple was quite busy, releasing two separate security updates. The first update from the iPhone manufacturer was a security-only Rapid Security Response patch. This marked only the second instance of Apple issuing a Rapid Security Response, and the process was not as seamless as the first one. On July 10, Apple rolled out iOS 16.5.1 9 (a) to address a single WebKit vulnerability that was already being exploited, but the patch was quickly withdrawn after it was found to disrupt several websites for users. A few days later, Apple re-released the update as iOS 16.5.1 (c), finally resolving the WebKit issue without causing any other problems.

Later in July, Apple’s major point upgrade, iOS 16.6, was released with 25 security fixes, including the previously exploited WebKit bug that was addressed in iOS 16.5.1 (c), identified as CVE-2023-37450. Among the other bugs addressed in iOS 16.6 were 11 in the Kernel, the heart of the iOS operating system, one of which Apple said is already being exploited. The Kernel flaw is the third iOS issue identified by security firm Kaspersky as part of the zero-click “Triangulation spyware” attacks.

Apple also rolled out iOS 15.7.8 for users of older devices, along with iPadOS 16.6, Safari 16.6, macOS Ventura 13.5, macOS Monterey 12.6.8, macOS Big Sur 11.7.9, tvOS 16.6, and watchOS 9.6.

Microsoft Microsoft’s July Patch Tuesday is a crucial update to watch for, as it addresses 132 vulnerabilities, including several zero-day flaws. To begin with, one of the bugs outlined in the patch update, identified as CVE-2023-36884, has yet to be addressed. In the meantime, the technology giant has provided steps to mitigate the already exploited flaw, which is reportedly being used in attacks by a Russian cybercrime group.

Other zero-day flaws included in Microsoft’s Patch Tuesday are CVE-2023-32046, a platform elevation of privilege bug in the MSHTML core Windows component, and CVE-2023-36874, a vulnerability in the Windows Error Reporting service that could let an attacker gain admin rights. Meanwhile, CVE-2023-32049 is an already exploited vulnerability in the Windows SmartScreen feature.

It is needless to say that you should update as soon as possible while keeping an eye out for the fix for CVE-2023-36884.

Google Android Google has rolled out an update for its Android operating system, addressing numerous security vulnerabilities, including three that it says “may be under limited, targeted exploitation.”

The first of the already exploited vulnerabilities is CVE-2023-2136, a remote code execution (RCE) bug in the System with a CVSS score of 9.6. The critical security vulnerability could lead to RCE with no additional privileges needed, according to the tech firm. “User interaction is not needed for exploitation,” Google warned.

CVE-2023-26083 is an issue in Arm Mali GPU driver for Bifrost, Avalon, and Valhall chips, rated as having a moderate impact. The vulnerability was used to deliver spyware to Samsung devices in December 2022.

CVE-2021-29256 is a high-severity flaw that also impacts Bifrost and Midgard Arm Mali GPU kernel drivers.

The Android updates have already reached Google’s Pixel devices and some of Samsung’s Galaxy range. Given the severity of this month’s bugs, it’s a good idea to check whether the update is available and install it now.

Google Chrome 115 Google has released the Chrome 115 update for its popular browser, addressing 20 security vulnerabilities, four of which are rated as having a high impact. CVE-2023-3727 and CVE-2023-3728 are use-after-free bugs in WebRTC. The third flaw rated as having a high severity is CVE-2023-3730, a use-after-free. Chunk 2: A vulnerability in Tab Groups has been identified as CVE-2023-3732, which is an out-of-bounds memory access issue in Mojo. Despite none of the vulnerabilities being exploited in real-world attacks, six have been classified as medium severity. Given that Chrome is a commonly targeted platform, it’s advisable to keep your system updated.

Mozilla’s Firefox 115 was released shortly after Chrome 115, addressing several high severity flaws. Notable among these are two use-after-free bugs, identified as CVE-2023-37201 and CVE-2023-37202. Mozilla also rectified two memory safety bugs, CVE-2023-37212 and CVE-2023-37211, which were found in Firefox 114, Firefox ESR 102.12, and Thunderbird 102.12. Mozilla’s advisory noted that these bugs demonstrated evidence of memory corruption, which could potentially be exploited to run arbitrary code with sufficient effort.

Enterprise software corporation Citrix has also issued an update warning, following the rectification of multiple flaws in its NetScaler ADC (now known as Citrix ADC) and NetScaler Gateway (now Citrix Gateway) tools. One of these flaws, CVE-2023-3519, is an unauthenticated remote code execution vulnerability that has been exploited and has a CVSS score of 9.8. Citrix has observed exploits of CVE-2023-3519 on unmitigated appliances and strongly urges affected customers to install the updated versions as soon as possible. The US Cybersecurity and Infrastructure Security Agency (CISA) also issued an advisory about this bug, noting its use in attacks on a critical infrastructure organization in June.

Enterprise software company SAP has released its July Security Patch Day, which includes 16 security fixes. The most severe of these is CVE-2023-36922, an OS command injection vulnerability with a CVSS score of 9.1. Onapsis, a security firm, stated that an authenticated attacker could “inject an arbitrary operating system command into a vulnerable transaction and program.” Therefore, patching is highly recommended due to the high impact on the confidentiality, integrity, and availability of the affected SAP system.

In addition, CVE-2023-33989 is a directory traversal vulnerability in SAP NetWeaver with a CVSS score of 8.7, and CVE-2023-33987 is a request smuggling and request concatenation vulnerability in SAP Web Dispatcher with a CVSS score of 8.6.

Software firm Oracle has also released its July Critical Patch Update Advisory, which addresses 508 vulnerabilities across its products. This includes 77 new security patches for Oracle Communications, with 57 of these vulnerabilities being exploitable remotely over a network without user credentials. One of the most severe flaws is CVE-2023-20862, which has a CVSS score of 9.8. Oracle has also released 147 patches for Financial Services and 60 fixes for Fusion Middleware. The company stressed the importance of customers applying Critical Patch Update security patches promptly and remaining on actively supported versions, as it continues to receive reports of attempts to exploit vulnerabilities it has already patched. In some instances, attackers were successful because targeted customers had not applied available Oracle patches.

https://www.infradapt.com/news/the-ongoing-effort-to-counter-zero-day-threats-this-summer/

Apple released iOS 16.6, iPadOS 16.6, and macOS 13.5 yesterday to fix various security vulnerabilities affecting these platforms.

263 - Post Midwest Mac BBQ At the Lake, A Recap Before Macstock - With Jeff Gamet, Chuck Joiner, and Brittany Smith

The latest In Touch With iOS with Dave he is joined by Jeff Gamet, Chuck Joiner, and Brittany Smith. We recorded the show at Dave’s Lake house and we were all in person seeing each other for the first time in a long time before Macstock. Apple maps is really good 11 years after their release. We enjoy hanging out lakeside in person and recap the Midwest Mac BBQ and getting ready for Macstock. 

The show notes are at InTouchwithiOS.com


Direct Link to Audio 

Links to our Show

Click this link Buy me a Coffee to support the show we would really appreciate it. intouchwithios.com/coffee 

Another way to support the show is to become a Patreon member patreon.com/intouchwithios

Website: In Touch With iOS

YouTube Channel

In Touch with iOS Magazine on Flipboard

Facebook Page

Mastadon 

Twitter

Instagram

News

Threads Social Network Gets First Major Update 

AppleDB Offers Useful Database of Apple Devices, Software Updates, Firmware Releases, and More - MacRumors

Beats Studio Pro Debut With Improved Sound Quality, Spatial Audio, USB-C, and More - MacRumors

Apple and Goldman Sachs Crediting Some Customers Who Had Long Waits for Savings Withdrawal Requests - MacRumors

Review: Ember's Travel Mug 2 Won't Get Lost With Find My Integration

Topics

Beta this week. iOS16.6 RC is out

Apple Seeds Release Candidate Versions of iOS 16.6 and iPadOS 16.6 to Developers

Apple Seeds Release Candidate Version of watchOS 9.6 to Developers 

Apple Seeds tvOS 16.6 Release Candidate to Developers - MacRumors

iOS 17 Beta 3 continues

iOS 17: How to Get Siri to Read Web Articles to You - MacRumors

iOS 17: 10+ New Features in the Messages App

Rumored new Apple TV What to Expect From the Next-Generation Apple TV Launching Next Year

Apple Maps After 11 years of work, people actually like Apple Maps

When should you? When is the best time to buy an iPhone? | Macworld

We talk to many guests including speakers and attendees of Macstock  at the midwest Mac BBQ 

Macstock 7 is in the books for 2023. Purchase a virtual pass to see Dave, Brittany, Chuck, and Jeff and their presentations. 

Our Host

Dave Ginsburg is an IT professional supporting Mac, iOS and Windows users and shares his wealth of knowledge of iPhone, iPad, Apple Watch, Apple TV and related technologies. Visit the YouTube channel https://youtube.com/intouchwithios follow him on Mastadon @daveg65, 

Twitter @daveg65.and the show @intouchwithios

Our Regular Contributors

Jeff Gamet is a podcaster, technology blogger, artist, and author. Previously, he was The Mac Observer’s managing editor, and Smile’s TextExpander Evangelist. You can find him on Mastadon @jgamet as well as Twitter and Instagram as @jgamet  His YouTube channel https://youtube.com/jgamet

Ben Roethig Former Associate Editor of GeekBeat.TV and host of the Tech Hangout and Deconstruct with Patrice  Mac user since the mid 90s. Tech support specialist. Twitter @benroethig  Website: https://roethigtech.blogspot.com

About Our Guests

Chuck Joiner is the host of MacVoices and hosts video podcasts with influential members of the Apple community. Make sure to visit macvoices.com and subscribe to his podcast. You can follow him on Twitter @chuckjoiner and join his MacVoices Facebook group.

https://tooting.ninja/@macstockexpo

Brittany Smith is a cognitive neuroscientist who provides a variety of consulting services through her business, Devise and Conquer that includes ADD/ADHD coaching, technology coaching, productivity consulting, and more. She is a self-designated “well-rounded geek”, and holds a M.S. degree in Cognitive Neuroscience. She can be found on Twitter as @addliberator. Find her on her YouTube channel of tech tips.

Here is our latest Episode!

آبل تطلق تحديث 16.6 iOS و iPadOS 16.6

أصدرت آبل اليوم تحديثات رئيسي يحمل رقم 16.6 لجميع أنظمتها على أجهزتها المختلفة، ورغم أنه لا يوجد أي مميزات في هذا التحديث سوى إصلاح بعض الأخطاء في النظام وتحديثات أمنية هامة، إلا أنه يقال أن آبل قامت بتحسين أداء البطارية بشكل كبير في هذا التحديث. Continue reading Untitled

View On WordPress

Apple ra mắt bản Beta 3 ở cả iOS 16.6 và iPadOS 16.6, dành cho các nhà phát triển nhằm mục đích thử nghiệm thêm một số tính năng mới.

【iPadOS 16.6.1】不具合バグ修正情報・新機能・変更点・いつ公開・インストール時間・やり方など

iPadOS 16.6.1 配信開始日は2023年09月08日 金曜日 (JST) 記事のアップデート情報 2023年09月08日 金曜日 (JST) 記事公開 OSリリース情報 今回 2023年09月08日 金曜日 (JST)に最新のOS、iPadOS 16.6.1 がリリースされました。 今回のアップデートは「小型セキュリティ修正アップデート」です。「このアップデートには重要なセキュリティ修正が含まれ、すべてのユーザに推奨されます」のでアップデートは必ず行いましょう。 参考 前回2023年07月25日 火曜日 (JST)に一つ前のOS、iPadOS 16.6 がリリースされました。 情報は公式ページにも公開中 Appleの公式サイトはこちらです 大きな不具合報告 2023年09月08日 金曜日…

View On WordPress

What's New | iOS 16.5 Released

This week saw a solid mix of Apple news and rumors, including the release of iOS 16.5 and associated software upgrades, the Beats Studio Buds + earbuds, and an early mention of Apple's forthcoming accessibility improvements. On the rumor front, we learned a bit more about what to expect with the iPhone 15 lineup and the M3 family of Mac and iPad chips later this year, but the Apple headset is the main focus of attention in the lead-up to WWDC in a few weeks, so read on for all the details on these stories and more! Apple Releases iOS 16.5 and iPadOS 16.5 With Sports Tab in Apple News, Bug Fixes and More Apple released iOS 16.5 to the public this week, after almost two months of beta testing, bringing some sports-related upgrades to Apple News, a new Pride Celebration wallpaper, and many bug fixes. It's a minor update as iOS 16 development winds down ahead of the iOS 17 unveiling at WWDC next month, but we'll see at least one more iOS 16 update before the public release of iOS 17 in September, as Apple has seeded initial betas of iOS 16.6 and related updates for testing. The capabilities of Apple's headset are said to 'far exceed' those of rival devices. With an announcement at WWDC in just a few weeks, reports regarding Apple's AR/VR headset are circulating, with The Wall Street Journal reporting that its capabilities will "far exceed" those of competing products. Other sources, however, are more hesitant, with Bloomberg stating that senior Apple officials like as Tim Cook and Craig Federighi have mainly stayed away from the project during its development, raising the issue of whether Apple is completely behind it. Beats Studio Buds Plus with Improved Performance and Transparent Design for $169.99

Apple's Beats brand launched the Beats Studio Buds + earbuds this week, in one of the worst-kept secrets that has witnessed repeated leaks in recent months. In comparison to their predecessors, the new $170 earphones feature increased performance, longer battery life, and an eye-catching new Transparent color option. They are already accessible in the United States, Canada, and China, with other nations to come in the following months. Studio Buds Plus also improve on fit, with a new extra-small eartip option joining the current small, medium, and large sizes to suit a wider range of ears with a better seal. Each earbud's multi-function "b" button has been updated to minimize inadvertent pushes and provide a stronger feel. The button retains typical media functionality, with a single push controlling play/pause, a double press skipping forward, and a triple press skipping backward. A press-and-hold mechanism switches between ANC and Transparency mode, but it can also be set to engage a voice assistant or change volume up and down. Call handling functionality can also be configured to require one or two key pushes end a call. Beats Studio Buds Plus, in addition to ANC and Transparency, enable Spatial Audio content on Apple Music, albeit they lack the immersive head-tracking capability present on the Beats Fit Pro and many AirPods versions. Rather than using Apple's H1 or H2 chip, the Beats Studio Buds + employ a custom second-generation "Beats Proprietary Platform" that provides many of the same features as Apple's chips, including "Hey Siri" and Find My support, automatic device switching via iCloud, and more, while also offering similar features on Android, including Find My Device, one-touch pairing, and automatic pairing to all devices linked to the same Google account. Read the full article

Emergency Fix: Google's Response to Chrome Vulnerability

On Monday, Google introduced emergency security updates to address a critical vulnerability in its Chrome web browser, which it announced is being exploited in real-time. Identified as CVE-2023-4863, the problem is characterized as a heap buffer overflow situation within the WebP image format, potentially leading to arbitrary code execution or a system crash.

The discovery and reporting of this flaw, on September 6, 2023, is attributed to Apple’s Security Engineering and Architecture (SEAR) and The University of Toronto’s Munk School’s Citizen Lab. While Google has not yet revealed further information regarding the nature of the attacks, it has confirmed that an exploit for CVE-2023-4863 is indeed being used in real-time.

With this latest patch, Google has resolved a total of four zero-day vulnerabilities in Chrome since the beginning of the year, including

CVE-2023-2033 (CVSS score: 8.8) – Type Confusion in V8,

CVE-2023-2136 (CVSS score: 9.6) – Integer overflow in Skia, and

CVE-2023-3079 (CVSS score: 8.8) – Type Confusion in V8.

This development occurred simultaneously with Apple’s extension of fixes to address CVE-2023-41064 for several devices and operating systems, including iOS 15.7.9 and iPadOS 15.7.9 – iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation), as well as macOS Big Sur 11.7.10 and macOS Monterey 12.6.9.

CVE-2023-41064 is associated with a buffer overflow problem in the Image I/O component that could facilitate arbitrary code execution when handling a maliciously crafted image. The Citizen Lab suggests that CVE-2023-41064 was used in combination with CVE-2023-41061, a validation issue in Wallet, as part of a zero-click iMessage exploit chain called BLASTPASS to deploy Pegasus on fully-updated iPhones running iOS 16.6.

Given that both CVE-2023-41064 and CVE-2023-4863 are centered around image processing and that both were reported by Apple and the Citizen Lab, there is a suggestion of a potential link between the two. To counter potential threats, users are advised to update to Chrome version 116.0.5845.187/.188 for Windows and 116.0.5845.187 for macOS and Linux. Users of Chromium-based browsers such as Microsoft Edge, Brave, Opera, and Vivaldi are also encouraged to implement the fixes as they are released.

https://www.infradapt.com/news/googles-response-to-chrome-vulnerability/

261 - Brydge Lives and Emergency SOS Saves - With Jeff Gamet and Guests Guy Serle, Mike Potter

The latest In Touch With iOS with Dave he is joined by guest, Guy Serle, Mike Potter, and Jeff Gamet. The revival of iPad keyboard maker Brydge with new owner, the iPhone's life-saving SOS feature saves another person, a case involving stolen Apple products, iCloud storage price increase in UK and other countries.  Some nostalgia for the first iPhone which went on sale June 29, 2007 16th anniversary., A new Motorola Defi pocket satellite link gadget lets you text messages immediately. The Apple Trade-in plan worked well for Dave with good pricing and a review of experience. Plus tips on what to do before you send in your trade-in out and more.

The show notes are at InTouchwithiOS.com


Direct Link to Audio 

Links to our Show

Click this link Buy me a Coffee to support the show we would really appreciate it. intouchwithios.com/coffee 

Another way to support the show is to become a Patreon member patreon.com/intouchwithios

Website: In Touch With iOS

YouTube Channel

In Touch with iOS Magazine on Flipboard

Facebook Page

Twitter

Instagram

News

iPad keyboard maker Brydge revived under new ownership; details on unpaid salaries and unfulfilled orders unknown

iPhone 14's Emergency SOS via Satellite Feature Saves California Hiker

New Hampshire Man Pleads Guilty to Taking Huge Bribe to Ship $2M Worth of Stolen Apple Products 

Apple Hikes iCloud+ Subscription Prices in Many Countries Around the World

Apple No Longer Offers Interest-Free Financing in Canada

Stardew Valley Coming to Apple Arcade on July 21

T-Mobile ditches AutoPay discount for Apple Pay despite history of security woes - 9to5Mac

Apple Store employees get their iPhone X upgraded to iPhone 14 

Topics

Beta this week. 1OS 16.6 Beta 4 was released this week. iOS 17 Beta 2 continues.

Apple Seeds Fourth Betas of iOS 16.6 and iPadOS 16.6 to Developers

Apple Seeds Fourth Beta of watchOS 9.6 to Developers

Apple Seeds Fourth Beta of tvOS 16.6 to Developers

iOS 17: Eight Privacy and Security Improvements Coming in Apple's Next Update 

iOS 17 Photos App Can Tell You What Those Confusing Laundry Symbols Mean

How to turn photos into iMessage stickers with iOS 17

What iOS 17 features you aren't going to get at launch

The first iPhone went on sale on June 29, 2007. We discuss this anniversary and what  the future holds for iPhone. 

Lets see what ChatGPT says about this anniversary.  This highly anticipated device, developed by Apple Inc., revolutionized the mobile phone industry and set a new standard for smartphones. The release of the original iPhone marked the beginning of a new era in mobile technology, combining a sleek design with a multi-touch interface and introducing the concept of mobile applications. With its groundbreaking features, such as web browsing, email functionality, and a built-in iPod, the iPhone quickly captured the imagination of consumers worldwide. The launch of the first iPhone paved the way for subsequent generations of smartphones, fundamentally changing the way people communicate, access information, and interact with technology.

Is this a new way to use satellite SOS? The Motorola Defy Satellite Link is a keychain sized device that provides Satellite connectivity plus SOS. SOS in the iPhone is only available in emergencies; this can give you connections for text and check-ins. 

 This small gadget gives you the iPhone 14's best feature for $149 

Apple Trade in guide. Dave bought a new iPhone 14 for a family member and gives his experience.

How to trade in your MacBook, macOS desktop, iPhone, or iPad

Macstock 7 is here! Tickets are Sold Out but Virtual Tickets are available.Dave is speaking again at the event along with Jeff Gamet, Brittany Smith, Chuck Joiner, and many others. Please join in all the fun July 22-23, 2023! Speakers Link.

Our Host

Dave Ginsburg is an IT professional supporting Mac, iOS and Windows users and shares his wealth of knowledge of iPhone, iPad, Apple Watch, Apple TV and related technologies. Visit the YouTube channel https://youtube.com/intouchwithios follow him on Mastadon @daveg65, 

Twitter @daveg65.and the show @intouchwithios

  Our Regular Contributors

Jeff Gamet is a podcaster, technology blogger, artist, and author. Previously, he was The Mac Observer’s managing editor, and Smile’s TextExpander Evangelist. You can find him on Mastadon @jgamet as well as Twitter and Instagram as @jgamet  His YouTube channel https://youtube.com/jgamet

Ben Roethig Former Associate Editor of GeekBeat.TV and host of the Tech Hangout and Deconstruct with Patrice  Mac user since the mid 90s. Tech support specialist. Twitter @benroethig  Website: https://roethigtech.blogspot.com

About our Guest

Guy Serle Is the host of the MyMac Podcast email [email protected] @MacParrot and @VertShark on Twitter Vertshark.com,  Vertshark on YouTube, Skype +1 Area code  703-436-9501

  Mike Potter is the organizer of Macstock Conference: and the host of the For Mac Eyes Only Podcast. You can reach him on Mastodon: https://tooting.ninja/@formaceyesonly https://tooting.ninja/@macstockexpo

Here is our latest Episode!