Overview
- Apple released iOS 26.5.2, iPadOS 26.5.2 and macOS Tahoe 26.5.2 on Monday, delivering a security-only update that pulls fixes originally tested in the 26.6 betas into an earlier public package.
- The updates address about 25–29 vulnerabilities concentrated in WebKit, the browser engine that underpins Safari and many third-party apps, plus several kernel-level patches that could affect system stability or memory safety.
- Apple told Reuters there is no evidence the now-patched flaws were exploited in the wild, and the company said it accelerated the release because powerful AI models can shorten the time needed to turn disclosed flaws into working attacks.
- Security and tech outlets recommend that all users install 26.5.2 promptly, while developers should continue testing 26.6 and iOS/macOS 27 in parallel and avoid running developer betas on primary devices without backups.
- The move marks a shift from Apple’s usual practice of bundling many fixes into the next minor release and signals broader industry pressure to tighten patch windows as AI lowers the bar for exploit development.