Once installed, the updates protect iPhone and iPad users users from an attack that takes place once an audio stream is processed which results in code execution as the computer carries out the instructions of the program it is running. Apple says that it is aware of a report that claims this issue has already been exploited in sophisticated individual attacks against certain targeted iOS users.
This memory corruption issue was fixed with the use of bounds checking which guards against the placement of data in the wrong file. It also prevents users from placing too much data in one file.
Another vulnerability, CVE-2025-31201, related to vulnerable code, was discovered by Apple and it allows an attacker with arbitrary read and write capability to bypass Pointer Authentication. This is an important security feature on Apple’s A-series and M-series chips that prevents memory corruption attacks. These attacks can cause a program to execute arbitrary code which is potentially a very serious situation.
Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against targeted individuals using iOS. By removing the vulnerable code Apple was able to improve the security of these versions of iOS and iPadOS. To install the update, go to Settings > General > Software update and follow the directions.
This part of the update was released for the iPhone XS and later, iPad Pro 13-inch, iPad Pro 13.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 7th generation and later, and iPad mini 5th generation and later.
Installing the updates takes only a few minutes and it could save you from having your financial apps infiltrated by cybercrooks looking to wipe out your accounts.
