iOS 9.2 update release information


#1

Security update and verification

Remote access

A malicious application may be able to execute
arbitrary code with system privileges (remote access)

o Description:
An access control issue was addressed by preventing modification of access
control structures.

o Description:
Multiple segment validation issues existed in dyld(dynamic linker, links
together shared libraries on storage,). These were addressed through improved
environment sanitization.( This error was detected by the jailbroke team Pangu.)

o Description:
Multiple path validation issues existed
in Mobile Replayer. These were addressed through improved environment
sanitization.

o Description:
Multiple memory corruption issues existed in IOHIDFamily API (kernel extension
that provides an abstract interface of with human interface devices (HID), e.g.
the touchscreen, buttons, accelerometer). These issues were addressed through
improved memory handling.

o Description:
A memory corruption issue existed in the processing of malformed plists. This
issue was addressed through improved memory handling.

o A
timing issue existed in loading of the trust cache. This issue was resolved by
validating the system environment before loading the trust cache.

A malicious application may maintain access to
Contacts after having access revoked

o Description:
An issue existed in the sandbox’s handling of hard links. This issue was
addressed through improved hardening of the app sandbox.

A remote attacker may cause an unexpected
application termination or arbitrary code execution

o Description:
A memory corruption issue existed in handling SSL handshakes. This issue was
addressed through improved memory handling.

Safari and Web threat

Visiting a maliciously crafted website may lead
to arbitrary code execution

o Description:
An uninitialized memory access issue existed in zlib(software library used for data
compression). This issue was addressed through improved memory initialization
and additional validation of zlib streams. (This has been updated on all Apple
devices including OSX, Watch OS, iOS and Apple TV OS)

o Description:
A memory corruption issue existed in the processing of archives. This issue was
addressed through improved memory handling.

o Multiple
memory corruption issues existed in OpenGL. These issues were addressed through
improved memory handling.

o Description:
Multiple memory corruption issues existed in WebKit. These issues were
addressed through improved memory handling.

Visiting a maliciously crafted website may
reveal a user’s browsing history

o An
insufficient input validation issue existed in content blocking. This issue was
addressed through improved content extension parsing.

Visiting a malicious website may lead to user
interface spoofing

o Description:
An issue may have allowed a website to display content with a URL from a
different website. This issue was addressed through improved URL handling.

Visiting a maliciously crafted website may lead
to arbitrary code execution

o Description:
Multiple memory corruption issues existed in the processing of malformed media
files. These issues were addressed through improved memory handling.

Errors

Processing a maliciously crafted font file may
lead to arbitrary code execution

o Description:
A memory corruption issue existed in the processing of font files. This issue
was addressed through improved input validation.

A local application may be able to cause a
denial of service

o Description:
Multiple denial of service issues were addressed through improved memory
handling.

Processing a maliciously crafted image may lead
to arbitrary code execution

o Description:
A memory corruption issue existed in
ImageIO. This issue was addressed through improved memory handling.

Unauthorised access/attacks

A local user may be able to execute arbitrary
code with kernel privileges

o Description:
Multiple memory corruption issues existed in the kernel. These issues were
addressed through improved memory handling.

o Description:
An issue existed in the parsing of mach messages. This issue was addressed
through improved validation of mach messages. (Allow Remote Code Execution)

Parsing a maliciously crafted iBooks file may
lead to disclosure of user information

o Description:
An XML external entity reference issue existed with iBook parsing. This issue
was addressed through improved parsing.

A malicious application may be able to execute
arbitrary code with kernel privileges

o Description:
A null pointer dereference(an error causing a segmentation fault. It occurs
when a program attempts to read or write to memory with a NULL pointer) existed
in the handling of a certain userclient type. This issue was addressed through
improved validation.

Processing a maliciously crafted package may
lead to arbitrary code execution

o Description:
Multiple buffer overflows existed in the C standard library. These issues were
addressed through improved bounds checking.

Parsing a maliciously crafted XML document may
lead to disclosure of user information

o Description:
A memory corruption issue existed in the parsing of XML files. This issue was
addressed through improved memory handling.

An attacker with a privileged network position
may be able to bypass HSTS

o Description:
An input validation issue existed within URL processing. This issue was addressed
through improved URL validation.

An attacker may be able to use the backup system
to access restricted areas of the file system

o Description:
A path validation issue existed in Mobile Backup. This was addressed through
improved environment sanitization.

Opening a maliciously crafted iWork file may
lead to arbitrary code execution

o Description:
A memory corruption issue existed in the handling of iWork files. This issue
was addressed through improved memory handling.

A malicious application with root privileges may
be able to bypass kernel address space layout randomization

o Description:
An insufficient privilege separation issue existed in xnu. This issue was
addressed by improved authorization checks.

A malicious application may gain access to a
user’s Keychain items

o Description:
An issue existed in the validation of access control lists for keychain items.
This issue was addressed through improved access control list checks.

A person with physical access to an iOS device
may be able to use Siri to read notifications of content that is set not to be
displayed at the lock screen

o When
a request was made to Siri, client side restrictions were not being checked by
the server. This issue was addressed through improved restriction checking.

End user changes:

This update contains improvements and bug fixes including:

Addressing an issue that could cause search in
contacts to display no results

Resolving an issue that could have prevented
Calendar form displaying all seven days in week view

Fixing an issue where Camera screen on iPad
could be black when attempting to capture video

Addressing an issue where camera screen on iPad
could be black when attempting to capture video

Addressing an issue that could cause instability
in the Activity app when viewing the day of Daylight Savings Time transition

Fixing an issue that could prevent data from
appearing in Health

Fixing an issue that could prevent wallet
updates and lock screen alerts from displaying

Addressing an issue where updating iOS could
prevent an alarm from going off.

Fixing an issue where some users were unable to
login to Find my iPhone

Fixing an issue that prevented some manual
iCould Backup from completing

Apple music improvements

o You
can now create a new playlist when adding a song to a playlist

o Your
most recently changed playlist is now listed at the top when adding songs to
playlist

o Download
albums or playlists from your iCloud Music Library by tapping the iCloud
download button

o See
which songs have been downloaded with the new download indicator next to each
song in My music and playlists.

o See
works, composers, and performers while browsing Classical music in the Apple
music catalogue

A new Top Stories section in news so you can
stay up to date with the most important news of the day(available in the US, UK
and AU)

Mail Drop in mail for sending large attachments

iBooks now supports 3d touch to peek and pop
pages from the table of contents, your notes and bookmarks, or from search
results inside a book

iBooks now supports listening to a audiobook
while you browse your library, read other books, or explore the iBooks Store.

iPhone support for the USB Camera Adapter to
import photos and videos

Improve stability of Safari

Improved stability of Podcast

Fixing an issue that caused mail attachments to
be inaccessible for some user with POP email account.

Resolving an issue for some users that caused
attachments to overlap text in mail

Fixing an issue where Live Photos could have
turned off after restoring from a previous iCould backup.

Addressing an issue where using the iPad
keyboard could unintentionally trigger text selection mode

Improved keyboard responsiveness when using
Quick Reply

Improved Chinese input

Fixing an issue on Cyrillic keyboards where caps
lock would be enabled when typing in URL or emails fields

Accessibility Improvements.

o Voiceover
fix

o Guided
access fix

o Speech
rate fix