Today, Apple began rolling out iOS 14.4.2, iPadOS 14.4.2 and watchOS 7.3.3, and the company advised users to upgrade as soon as possible. Like iOS / iPadOS 14.4.1 before it, this update fixes a security bug.
In addition, Apple released a similar security update ̵
The release notes for iOS 14.4.2 and iPadOS 14.4.2 are minimal, indicating only:
This update provides important security updates and is recommended for all users.
For information about the security content of Apple software updates, visit the Web site: https://support.apple.com/kb/HT201222
It is the security link that contains the real information. Here’s what Apple’s security support page says:
Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and newer, iPad 5th generation and newer, iPad mini 4 and newer, and iPod touch (7th generation)
Impact: Managing malicious Web content can lead to universal cross-site scripting. Apple is aware of a report that this issue may have been actively exploited.
Description: This issue was resolved through improved object lifetime control.
CVE-2021-1879: Clement Lecigne of Google Threat Analysis Group and Billy Leonard of Google Threat Analysis Group
The same goes for the watchOS update. All four software updates (iOS 14.4.2, iPadOs 14.4.2, iOS 12.5.2 and watchOS 7.3.3) should already be available to all supported device users right now. This is the second update since the release of iOS / iPadOS 14.4 and watchOS 7.3 in late January.
The update just before this was also an urgent solution to a security issue.
iOS 14.4 was a feature update, not just a security update or bug fix, but the added features were relatively modest. They included the ability for the camera to read smaller QR codes than before, an option to manually classify Bluetooth devices to ensure the desired behavior, and alerts to tell users if the camera “cannot be verified as a new, genuine Apple camera . “