Impact: Processing a maliciously crafted dfont file may lead to arbitrary code executionĬVE-2021-30840: Xingwei Lin of Ant Security Light-Year LabĬVE-2021-30841: Xingwei Lin of Ant Security Light-Year LabĬVE-2021-30842: Xingwei Lin of Ant Security Light-Year LabĬVE-2021-30843: Xingwei Lin of Ant Security Light-Year Lab Impact: Processing a maliciously crafted font may result in the disclosure of process memoryĭescription: An out-of-bounds read was addressed with improved input validation.ĬVE-2021-30831: Xingwei Lin of Ant Security Light-Year Lab Impact: An application with microphone permission may unexpectedly access microphone input during a FaceTime callĭescription: A logic issue was addressed with improved validation.ĬVE-2021-30882: Adam Bellard and Spencer Reitman of Airtime Impact: An attacker with physical access to a device may be able to see private contact informationĭescription: The issue was addressed with improved permissions logic.ĬVE-2021-30816: Atharv added October 25, 2021 Impact: A 3D model constructed to look like the enrolled user may be able to authenticate via Face IDĭescription: This issue was addressed by improving Face ID anti-spoofing models.ĬVE-2021-30863: Wish Wu (吴潍浠 of Ant-financial Light-Year Security Lab Impact: A local attacker may be able to cause unexpected application termination or arbitrary code executionĬVE-2021-30825: hjy79425575 working with Trend Micro Zero Day InitiativeĪvailable for devices with Face ID: iPhone X, iPhone XR, iPhone XS (all models), iPhone 11 (all models), iPhone 12 (all models), iPad Pro (11-inch), and iPad Pro (3rd generation) Impact: Processing a malicious audio file may result in unexpected application termination or arbitrary code executionĭescription: A logic issue was addressed with improved state management.ĬVE-2021-30834: JunDong Xie of Ant Security Light-Year Lab
Impact: A device may be passively tracked by its WiFi MAC addressĭescription: A user privacy issue was addressed by removing the broadcast MAC address.ĬVE-2021-30866: Fabien Duchêne of UCLouvain (Belgium) Impact: A malicious application may be able to execute arbitrary code with system privileges on devices with an Apple Neural Engineĭescription: A memory corruption issue was addressed with improved memory handling. Impact: A local attacker may be able to read sensitive informationĭescription: This issue was addressed with improved checks.ĬVE-2021-30811: an anonymous researcher working with CompartirĪvailable for devices with Apple Neural Engine: iPhone 8 and later, iPad Pro (3rd generation) and later, iPad Air (3rd generation) and later, and iPad mini (5th generation) Impact: An application may be able to execute arbitrary code with kernel privilegesĭescription: A memory consumption issue was addressed with improved memory handling.ĬVE-2021-30837: Siddharth Aeri for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation) Note - Click or tap the + icon to expand the instructions for your application.Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
If you prefer to continue accessing your AOL email on your current third-party email application, including the default email application on your mobile phone, please see details below on how to ensure it’s syncing with the latest secure sign-in method. More information on specific third-party platforms Learn how to generate third-party app passwords.
At that time, a new password will need to be created. Just remember, app passwords are only valid for the app they are created for and remain valid until you sign out or remove access to the app. If you use AOL two-step verification or an older email app, you may need to use an app specific password to access AOL Mail.
Continue using third-party mail apps securely Use an app password Please note, not all third-party email apps are supported.
Install the AOL app on your Android or iOS device.If we sent you an email indicating that your app is using outdated security protocols or you're unable to log in from an older app, you still have several options available to you. By default, we block access to AOL Mail from outdated apps that could leave your account vulnerable.