📅 Jul 31, 2025 ✍️ Cybernoz 📁 DarkReading 💬 0 ⏱️ 5 min

Apple Security Updates & Rapid Security Responses July 2025

Apple Security Updates & Rapid Security Responses July 2025

Apple has rolled out a wide-ranging series of Apple security updates and Rapid Security Responses, spanning iOS, iPadOS, macOS, tvOS, watchOS, and visionOS. These carefully coordinated Apple security releases provided vital patches for vulnerabilities affecting millions of devices across its ecosystem. 

The updates included iOS 18.6 and iPadOS 17.7.9 for iPhones (XS and later) and a range of iPads, including iPad Pro, Air, and mini models. macOS received three separate updates: version 15.6 for Sequoia, 14.7.7 for Sonoma, and 13.7.7 for Ventura, targeting compatible Mac systems.  

Apple Watch Series 6 and newer received watchOS 11.6, while Apple TV HD and all Apple TV 4K models were updated to tvOS 18.6. Additionally, visionOS 2.6 was released specifically for the Apple Vision Pro, rounding out a sweeping set of Apple security releases and Rapid Security Responses aimed at addressing key vulnerabilities and enhancing system stability across all devices. 

Details of the Apple Security Updates 

iOS 18.6 and iPadOS 18.6 

These updates bring improvements to accessibility, system libraries, WebKit, and media frameworks for supported iPhones (starting from iPhone XS) and a wide array of iPads.Highlights include: 

  • Accessibility issues fixed: VoiceOver no longer reads passcodes aloud, and privacy indicators now display properly. 
  • WebKit received critical patches that resolve memory corruption, address-bar spoofing, Safari crashes, denial-of-service flaws, and data leakage. 
  • Media frameworks (CoreMedia, CoreAudio, Model I/O, ImageIO) were hardened against crafted-file crashes and buffer overflows. 
  • CoreMedia Playback now enforces strict permission checks to protect sensitive user data. 
  • System libraries (libxml2, libxslt, ICU, libnetcore) were stabilized to reduce crash risks from untrusted content. 
  • Mail Drafts now respects the “Load Remote Images” setting correctly. 
  • Metal received fixes to prevent crashes via malformed textures. 
  • CFNetwork now resists unauthorized network configuration changes by low‑privilege users. 

iPadOS 17.7.9 

Specifically targeting older iPads, the iPad Pro 12.9‑inch 2nd generation, 10.5‑inch, and 6th generation, this update resolves vulnerabilities that could compromise privacy, memory safety, and app behavior. Major fixes include: 

  • Accessibility: privacy indicators restored for microphone and camera access. 
  • CFNetwork: patched flaws allowing low-privilege network modification and crashes. 
  • copyfile: symlink validation now blocks apps from accessing protected data. 
  • CoreMedia / Playback: out‑of‑bounds checks and permissions sanitization. 
  • Find My: protections added to prevent user fingerprinting. 
  • ICU & ImageIO: improved validation to block crafted‑content crashes and memory leaks. 
  • Kernel: remote-triggered shutdown bugs have been fixed. 
  • libxslt: open-source bug patched to prevent memory corruption. 
  • Mail Drafts: remote images are now blocked when disabled. 
  • Notes: logging now hides sensitive data. 
  • Sandbox profiles: tightened to prevent access to persistent device identifiers. 
  • WebKit: multiple vulnerabilities addressed, including crashes, use-after-free issues, and denial-of-service exploits. 

macOS Sequoia 15.6 

This substantial Apple security release addressed over 90 vulnerabilities in Sequoia, tackling privilege escalation, memory corruption, sandbox escapes, and denial-of-service weaknesses. Key areas patched include: 

  • AppleMobileFileIntegrity, Kernel, CoreServices, DiskArbitration, StorageKit, and libxpc: closing gaps that could allow root access or elevate privileges. 
  • Sandbox escape paths in Archive Utility, File Bookmark, Notes, Directory Utility, NSSpellChecker, and SharedFileList. 
  • Memory integrity improvements in CoreAudio, CoreMedia, ICU, Metal, Model I/O, and Power Management. 
  • A sweep of WebKit fixes targeting XSS, memory corruption, denial-of-service, and data leaks. 
  • Reinforced file and network security in copyfile, CFNetwork, libnetcore, and zip. 
  • Core OS services, including SecurityAgent, WindowServer, Software Update, System Settings, Find My, RemoteViewServices, and Voice Control, were patched for privilege misuse and secure data handling. 

macOS Sonoma 14.7.7 & Ventura 13.7.7 

These two versions build on the Rapid Security Responses foundation by patching critical threats in systems still widely in use. Both releases include: 

  • Fixes for privilege escalation (AppleMobileFileIntegrity, libxpc, Core Services, PackageKit). 
  • Remediation of sandbox escape vectors in Notes, SceneKit, SharedFileList, and File Bookmark. 
  • Stability upgrades for CFNetwork, CoreMedia, ICU, libxslt, GPU drivers, and others. 
  • Resolved arbitrary code execution opportunities via Finder, LaunchServices, Disk Images. 
  • Data exposure holes sealed in Security, WindowServer, and System Settings. 
  • Kernel and HTTPS proxy protections, plus memory-hardening in WebContentFilter. 
  • Wide-ranging improvements in ScanKit, Power Management, Shortcuts, StorageKit, and more. 

tvOS 18.6 

Available for all Apple TV HD and 4K units, this update patches memory-related flaws and web vulnerabilities in the tvOS environment. Highlights include: 

  • Better memory safety in afclip, CoreAudio, CoreMedia, Model I/O, Metal, and WebKit. 
  • Protection against unauthorized data access in CoreMedia Playback and ImageIO. 
  • Fixes for denial-of-service in CFNetwork, WebKit, and others. 
  • Patches for open‑source library issues in libxml2, libxslt, and WebKit. 

visionOS 2.6 

This security update for the Apple Vision Pro platform mirrors many of the tvOS improvements and strengthens the AR/VR OS. The updates include: 

  • Memory integrity patches in afclip, CoreAudio, CoreMedia, Metal, Model I/O, and WebKit. 
  • Data protection improvements in CoreMedia Playback, ImageIO, and WebKit. 
  • Input validation and DoS protection in WebKit and CFNetwork. 
  • Open‑source fixes for libxml2, libxslt, and WebKit vulnerabilities. 

Conclusion 

The recent Apple security updates, along with Rapid Security Responses, address a range of vulnerabilities across multiple platforms. The company has provided detailed Apple security releases with CVE references, reflecting ongoing collaboration with security researchers worldwide. Users of devices such as iPhone, iPad, Mac, Apple Watch, Apple TV, and Vision Pro should install these updates promptly to help protect their systems and data. 


Source link

About Cybernoz

Security researcher and threat analyst with expertise in malware analysis and incident response.