Connect with us

Apple

iOS 11.2.2 update released with fix for Spectre exploit

Published

on

Apple released iOS 11.2.2 on Monday morning with an important security fix.

Apple previewed this update in a support document published on January 5.

iOS 11.2.2 includes an updated version of Safari that mitigates the Spectre exploit, a nasty hardware vulnerability affecting most devices made in recent years.

While iOS 11.2.2 address the Spectre exploit, the fix that mitigates the issue reduces performance by, “an impact of less than 2.5% on the JetStream benchmark.” That isn’t a large performance reduction by any means, but it’s a performance reduction nonetheless.

Changelog

iOS 11.2.2 provides a security update and is recommended for all users.

For more information on the security content of Apple software updates, please visit this website: https://support.apple.com/kb/HT201222.

Security Content

iOS 11.2.2

Released January 8, 2018

Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation

Description: iOS 11.2.2 includes security improvements to Safari and WebKit to mitigate the effects of Spectre (CVE-2017-5753 and CVE-2017-5715).

We would like to acknowledge Jann Horn of Google Project Zero; and Paul Kocher in collaboration with Daniel Genkin of University of Pennsylvania and University of Maryland, Daniel Gruss of Graz University of Technology, Werner Haas of Cyberus Technology, Mike Hamburg of Rambus (Cryptography Research Division), Moritz Lipp of Graz University of Technology, Stefan Mangard of Graz University of Technology, Thomas Prescher of Cyberus Technology, Michael Schwarz of Graz University of Technology, and Yuval Yarom of University of Adelaide and Data61 for their assistance.

Continue Reading
Comments