Apple continues to neglect the security of its older devices.
With iOS 12.5.4, Apple is fixing three security vulnerabilities. The serial number CVE-2021-30737 has been found in an ASN.1 decoder, which can be exploited to run malicious code on devices. CVE-2021-30761 and CVE-2021-30762 affect WebKit in a similar way: they both allow arbitrary user-side code to be run. The iOS subversion in question can be installed on iPhone 5s, 6, and 6s smartphones, iPad Air, iPad mini 2, and iPad mini 3 tablets, as well as the sixth generation iPod touch. The 12.5.4 package is the fourth iOS 12 security update this year.
“Communicator. Total coffee buff. Tv fan. Passionate twitter aficionado. Amateur bacon geek. Devoted internet expert. Avid analyst.”