On Monday Apple released a patch for a zero-day flaw that’s been actively exploited.
Tracking as CVE-2022-42827 described An out-of-bounds write issue was addressed with improved bounds checking. In the out-of-bounds write vulnerability, the software writes data past the end, or before the beginning, of the intended buffer, which can result in the corruption of data, a crash, or code execution.
Apple didn’t go into further details about the flaw other than acknowledging its “aware of a report that the issue may have been actively exploited“.
Apple also fixed a few other issues with this patch.