Hello, welcome to the Tuesday, September 14th, 2021 edition of the Sansanet Storm Center's Stormcast. My name is Johannes Ulrich.

And today I'm recording from Jacksonville, Florida, but virtually teaching this week in Reston, Virginia.

Apple today released updates for Safari, for macOS Catalina,

MacOS Bixer, Apple Watch, iOS, iPad OS,

and these updates are fixing two critical vulnerabilities

that have already been exploited in the wild.

Now, Safari, for example, only is affected by one of these vulnerabilities, the WebKit

vulnerability.

The other products are affected by both vulnerabilities.

First vulnerability in core graphics may lead to arbitrary code execution if a crafted

PDF is processed.

The second, the WebKit vulnerability is triggered by visiting a malicious web page.

Now, the WebKit vulnerability CVE 2021 30858 is attributed to an anonymous researcher.

The Core Graphics Vulnerability CVE 2021-806-0 is attributed to the Citizen Lab.

The Citizen Lab, of course, has been sort of breaking these stories about the NSO Group and its Pegasus tool. This vulnerability is apparently

related and the Citizen Lab has published a blog post with additional details about the malicious

PDFs that they have seen attack a phone owned by a Saudi activist.

Use of this vulnerability has first been spotted by Citizen Lab in March.

Now, Citizen Lab has collaborated with Apple in fixing this vulnerability,

and now of course with Apple releasing the update.

We do get more details from

Citizen Lab about this particular event. So how critical is it that you are updating your devices?

...