By cryptoadmin 
On Wednesday, Apple pushed updates to most of its platforms: iOS 18.4.1, iPadOS 18.4.1, macOS 15.4.1, tvOS 18.4.1 and visionOS 2.4.1. They include two safety fixes for flaws that will have been utilized in real-world assaults, so it's sensible to replace your gadgets with out an excessive amount of delay.
Apple is conscious of a report that each safety points "could have been exploited in a particularly refined assault towards particular focused people on iOS."
One patched bug is in Apple's audio framework, CoreAudio. This reminiscence corruption subject allowed malicious media information to execute code when processed as audio streams. The opposite pertains to the Distant Participant Audio Management (RPAC) framework, which lets communications apps handle audio streams. That flaw allowed an attacker with arbitrary learn / write capabilities to bypass Pointer Authentication (a safety function in Apple's processors).
Apple "strongly advises" all customers to replace their gadgets.
This text initially appeared on Engadget at https://www.engadget.com/cell/smartphones/ios-1841-patches-two-iphone-security-flaws-used-in-extremely-sophisticated-attacks-194922877.html?src=rss