Apple pushes out iOS safety replace that’s extra tight-lipped than ever – Bare Safety

It’s slightly below a month since iOS 16.1.1 got here out for Apple iPhone customers, fixing a pair of bugs that had been listed with the worrying phrases “a distant person could possibly trigger sudden app termination or arbitrary code execution”.

Each macOS 13 Ventura and iPadOS bought up to date on the similar time, with a pair of safety bulletins printed on Apple’s website.

Now, there’s one other safety replace, apparently shifting iPhone customers solely as much as model iOS 16.1.2.

We did it so we might report again to you

We now have put in it, and after a relatively modest obtain (by Apple requirements, at the very least) of about 250MBytes, the reboot-and-update course of accomplished reassuringly shortly, and our telephone nonetheless appears to be working simply fantastic.

However this replace is mysterious even by Apple’s normally tight-lipped requirements, with the corporate residing as much as, and even perhaps past, its official statement that the it “doesn’t disclose, talk about, or verify safety points till an investigation has occurred and patches or releases are usually accessible.”

Apple insists that this veil of secrecy exists “[f]or the safety of our clients”, and if silence actually is golden in the case of cybersecurity updates, then we are able to solely assume there’s an awfully severe bug getting mounted this time spherical.

Certainly, we haven’t but acquired an Apple Safety Advisory electronic mail, which is the same old approach we hear concerning the newest patches, and Apple’s official safety replace portal HT201222 says nothing greater than this:

iOS 16.1.2 (particulars accessible quickly) – iPhone 8 and later – 30 Nov 2022

It’s now 2022-12-02, two days after than the official launch date proven above, and we are able to’t inform you something greater than what we discovered from the popup that appeared after we went to Settings > Normal > Software program Replace.

This assured us that “this replace gives vital safety updates”, and despatched us again on a fruitless loop again to the uninformative HT201222 web page for “details about the safety content material”:

As you possibly can see from the HT20122 screenshot above, that is, for now at the very least [2022-12-02T21:00Z], an iPhone-only patch, with no updates listed for any variations of iPadOS, macOS or Apple’s Watch and TV platforms.

What to do?

As talked about above, we up to date straight away, on the grounds that the thriller solely served to persuade us that one thing severe was most likely afoot…

…and since we’re within the lucky place of getting an Android telephone to fall again on if one thing goes incorrect.

We subsequently figured we’d take one for the group (by which we imply for the Bare Safety group!) and see if there have been any compelling causes to advise you in opposition to the replace.

Thankfully, we didn’t encounter any hassle that made us assume you shouldn’t replace, and lots of iPhone customers most likely both have already got or will quickly obtain the replace mechanically.

But when, like us, you like to have at the very least some technical data to go on first, then, as we identified proper within the headline itself, you’ll discover Apple much less communicative than ever this time.

Hold your eyes on that HT20122 portal web page to maintain up with the complete story, and to be careful in case different Apple platforms (e.g. iPadOS, macOS) or earlier supported variations (e.g. iOS 15) get belated-but-related updates for a similar safety holes.

You’re welcome.