iOS 16.3 now not signed by Apple
Further notes about varied safety patches had been added to iOS 16.3 shortly after being faraway from Apple’s signed working techniques — an uncommon transfer for the corporate.
A Twitter consumer named @aaronp613, who’s a buyer expertise lead at a jailbreaking web site known as Havoc Repo, identified the brand new security note changes. He found new CVEs had been added to a spread of replace notes on February twentieth.
The widespread patch between many of those up to date notes was one for CVE-2023-23524, shared by David Benjamin of Google Chrome. It enabled a denial of service from processing a maliciously crafted certificates, and it was addressed with improved enter validation.
As Aaron identified, Apple simply eliminated iOS 16.3 from its signed updates, which means customers cannot downgrade from iOS 16.3.1 anymore. Shortly after this unsigning, Apple then added the patch notes to its web site.
This will simply be a coincidence, as Apple routinely stops signing updates shortly after a brand new model comes out. These notes might have been withheld to make sure the patch really labored earlier than making iOS 16.3.1 the one signed model.
With the discharge of iOS 16.3.1 and the opposite current working system updates, customers needn’t fear about these safety points. They have been patched and reviewed within the wild, so customers ought to really feel secure updating to the most recent working techniques to make sure safety from these recognized safety points.
