Apple’s iOS 10.1 fixes several potentially-major security vulnerabilities in iOS.
At least two of the issues could potentially allow an attacker complete control of the device after the user merely visits a web page with malicious code. All users should upgrade to iOS 10.1 immediately.
In one issue with the “CoreGraphics” system software, viewing “a maliciously crafted JPEG file may lead to arbitrary code execution”. JPEG is the most popular image format for photographic content, both on and off the web. In a separate issue with WebKit — which a large number of popular apps use to display web pages — “Processing maliciously crafted web content may lead to arbitrary code execution“.
A number of other security and privacy issues are fixed by the 10.2 update, although most would be more difficult to exploit. iPhone and iPad users can update to 10.1 by going to Settings > General > Software Update.
