Apple has released the first update for Watch OS
Apple released the APPLE-SA-2015-05-19-1 Watch OS 1.0.1 update for Watch OS, which runs its smart watches (Apple Watch Sport, Apple Watch, Apple Watch Edition). Fixed security vulnerabilities are not much different from similar ones for iOS or OS X. Attackers can execute arbitrary code in the OS, unauthorized bypass protection mechanisms against exploitation such as ASLR, enhance their privileges in the system (LPE), etc.
A total of 13 vulnerabilities were closed, among them the known vulnerability of FREAK, which we wrote about earlier . The vulnerability is present in the Secure Transport component and could allow attackers to decrypt SSL-protected traffic ( An attacker with a privileged network position intercept SSL / TLS connections ). The largest number of closed vulnerabilities is related to the Watch OS kernel. The company also revoked some digital certificates, see KB / 204873 .
')
For recommendations on the Apple Watch update process, see HT204641 .
be secure.
A total of 13 vulnerabilities were closed, among them the known vulnerability of FREAK, which we wrote about earlier . The vulnerability is present in the Secure Transport component and could allow attackers to decrypt SSL-protected traffic ( An attacker with a privileged network position intercept SSL / TLS connections ). The largest number of closed vulnerabilities is related to the Watch OS kernel. The company also revoked some digital certificates, see KB / 204873 .
')
For recommendations on the Apple Watch update process, see HT204641 .
be secure.
Source: https://habr.com/ru/post/258343/
All Articles