### Key Information - **Release Version**: iOS 16.7.3 and iPadOS 16.7.3 - **Release Date**: December 11, 2023 #### Vulnerability Details | Vulnerability | Impact | Description | |---------------|--------|-------------| | **Accounts** (CVE-2023-42919) | Apps may access sensitive user data | Privacy issue resolved by improving private data deletion methods | | **Assets** (CVE-2023-42896) | Apps may modify protected parts of the file system | Issue resolved by improving temporary file handling | | **AVEVideoEncoder** (CVE-2023-42884) | Apps may leak kernel memory | Resolved by improving sensitive information deletion methods | | **CallKit** (CVE-2023-42962) | Remote attackers may cause denial of service | Resolved by improving validation checks | | **Find My** (CVE-2023-42922) | Apps may read sensitive location information | Resolved by improving sensitive information deletion methods | | **ImageIO** (CVE-2023-42899) | Processing images may lead to arbitrary code execution | Resolved by improving memory handling | | **IOUSBDeviceFamily** (CVE-2023-42974) | Apps may execute arbitrary code with kernel privileges | Resolved by fixing race condition through improved state handling | | **Kernel** (CVE-2023-42914) | Apps may bypass sandbox restrictions | Resolved by improving memory handling | | **Libsystem** (CVE-2023-42893) | Apps may access protected user data | Resolved by removing vulnerable code and adding additional checks to fix permission issues | | **WebKit** (CVE-2023-42883) | Processing images may cause denial of service | Resolved by improving memory handling | | **WebKit** (CVE-2023-42917) | Processing web content may lead to arbitrary code execution | Resolved by improving locking mechanisms to fix memory corruption | | **WebKit** (CVE-2023-42916) | Processing web content may leak sensitive information | Resolved by improving input validation to fix out-of-bounds read issues | #### Notes - **Supported Devices**: iPhone 8, iPhone 8 Plus, iPhone X, 5th-generation iPad, 9.7-inch iPad Pro, 12.9-inch iPad Pro (1st generation). - **Release Date**: March 22, 2024 (for some CVEs).