Particle.news
Download on the App Store
3 ARTICLES
·
3h ago

Apple Patches Single FontParser Vulnerability Across iOS, macOS and visionOS

Apple says it found the flaw internally with no evidence of in‑the‑wild exploitation.

Image

Overview

  • Updates delivering the fix include iOS and iPadOS 26.0.1 and 18.7.1, macOS Tahoe 26.0.1, Sequoia 15.7.1, Sonoma 14.8.1, and visionOS 26.0.1.
  • The vulnerability, tracked as CVE-2025-43400, resides in FontParser and can trigger app crashes or corrupt process memory when handling malicious fonts.
  • Apple describes the root cause as an out-of-bounds write and says it resolved it by improving bounds checking.
  • watchOS 26.0.2 and tvOS 26.0.1 do not list the FontParser issue, indicating those platforms were not covered by this security fix.
  • This .0.1 release cycle also includes routine bug fixes, but Apple’s security notes identify only this single cross-platform patch.