Apple has released iOS 16.3.1 and iPadOS 16.3.1, which includes bug fixes, security patches and a critical kernel bug that could allow an app to execute arbitrary code with kernel privileges. There is also a Safari bug that could allow arbitrary code execution. It is important to update as soon as possible to prevent active exploitation.
Unsurprisingly, Apple released iOS 16.3.1 and iPadOS 16.3.1, updating the phone and tablet with the same version released for tvOS and HomePod last week.
There are three bug fixes according to the release notes:
iCloud settings may not respond or display incorrectly if apps use iCloud
Siri requests for Find My may not work
Crash Detection optimizations on iPhone 14 and Phone 14 Pro models
While those bug fixes are welcome, there are a couple of critical security patches that make this a must-have update. There are two major fixes: a kernel bug that affects all Apple devices running iOS/iPadOS 16 that could allow an app to execute arbitrary code with kernel privileges, and a Safari bug that fixes an issue in which a malicious web page could allow arbitrary code execution.
The notes say that the latest vulnerability “may have been actively exploited,” which puts it at the top of the list and makes iOS 16.3.1 a major update. Security flaws are common, but if there are already vulnerabilities in the wild, it’s critical that you patch your device as soon as possible.
To update to iOS 16.3.1, go to the Settings app, tap General and then Software update. finally touch download and install and follow the directions.
