Just days after releasing iOS 16.4, in which dozens of security issues were fixed, Apple has released another update to fix serious vulnerabilities.
Apple released iOS 16.4.1, iPadOS 16.4.1, and macOS Ventura 13.3.1, all of which address serious security issues that bad actors are actively exploiting. The company outlined the iOS and iPadOS issues in a support document:
IOSurfaceAccelerator
Impact: An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.
WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
The macOS support page included an identical description of the two issues.
The worst kind of vulnerabilities are those hackers know about and are actively exploiting. Given the severity of these issues, all users should update immediately.