While we’re still waiting for iOS 14.5 and iPadOS 14.5 to hit, Apple has released iOS 14.4.1 and iPadOS 14.4.1, smaller updates that address a specific vulnerability that poses a risk to the Webkit rendering engine used by Safari (and third party browsers).
Per Apple’s release notes:
Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch (7th generation)
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A memory corruption issue was addressed with improved validation.
CVE-2021-1844: Clément Lecigne of Google’s Threat Analysis Group, Alison Huffman of Microsoft Browser Vulnerability Research
As usual, you can update your iPhone or iPad by navigating to Settings > General > Software Update.
If you’ve tried the iOS 14.4.1 and/or the iPadOS 14.4.1 updates and have any feedback to offer, please let us know about your experience in the comments.
Via Macworld