{"id":269673,"date":"2022-07-21T07:56:33","date_gmt":"2022-07-21T09:56:33","guid":{"rendered":"https:\/\/teknomers.com\/fr\/apple-publie-des-correctifs-de-securite-pour-tous-les-appareils-corrigeant-des-dizaines-de-nouvelles-vulnerabilites\/"},"modified":"2022-07-21T07:56:34","modified_gmt":"2022-07-21T09:56:34","slug":"apple-publie-des-correctifs-de-securite-pour-tous-les-appareils-corrigeant-des-dizaines-de-nouvelles-vulnerabilites","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/apple-publie-des-correctifs-de-securite-pour-tous-les-appareils-corrigeant-des-dizaines-de-nouvelles-vulnerabilites\/","title":{"rendered":"Apple publie des correctifs de s\u00e9curit\u00e9 pour tous les appareils corrigeant des dizaines de nouvelles vuln\u00e9rabilit\u00e9s"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both\"><\/div>\n<p>Apple a \u00e9t\u00e9 d\u00e9ploy\u00e9 mercredi <a rel=\"nofollow noopener\" href=\"https:\/\/support.apple.com\/en-us\/HT201222\" target=\"_blank\">correctifs logiciels<\/a> pour iOS, iPadOS, macOS, tvOS et watchOS afin de corriger un certain nombre de failles de s\u00e9curit\u00e9 affectant ses plates-formes.<\/p>\n<p>Cela inclut au moins 37 failles couvrant diff\u00e9rents composants d&#8217;iOS et de macOS, allant de l&#8217;\u00e9l\u00e9vation des privil\u00e8ges \u00e0 l&#8217;ex\u00e9cution de code arbitraire et de la divulgation d&#8217;informations au d\u00e9ni de service (DoS).<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/strike-d\" target=\"_blank\" title=\"DevOps backupy\"><img loading=\"lazy\" decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" src=\"https:\/\/thehackernews.com\/new-images\/img\/b\/R29vZ2xl\/AVvXsEgvfqow2z1XORevUpzKGWWXZ2DP4dMaNi-7cycpa3J_bSZKv0tO6MP40HLl7lvVJDIswOmb6I-YoNMLJym4v9oLZQczujsMqcttB3M_Cvm6E-zLs0XrpwaTZ_SGFjckDfi3CPfijZaii8Z88_btcKeHKKfxm7cDyF3kaVvsirGpb2JWVH0Ot3xGiC2sZg\/s1600\/strike-728.png\" width=\"300\" height=\"250\" \/><\/a><\/div>\n<p>Le principal d&#8217;entre eux est CVE-2022-2294, une faille de corruption de m\u00e9moire dans le composant WebRTC que Google a r\u00e9v\u00e9l\u00e9 plus t\u00f4t ce mois-ci comme ayant \u00e9t\u00e9 exploit\u00e9e dans des attaques r\u00e9elles visant les utilisateurs du navigateur Chrome.  Il n&#8217;y a cependant aucune preuve d&#8217;une exploitation de type zero-day dans la nature de la faille ciblant iOS, macOS et Safari.<\/p>\n<div class=\"separator\" style=\"clear: both\"><img decoding=\"async\" alt=\"\" border=\"0\" data-original-height=\"405\" data-original-width=\"728\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/07\/1658397393_698_Apple-publie-des-correctifs-de-securite-pour-tous-les-appareils.jpg\" \/><\/div>\n<p>Outre CVE-2022-2294, les mises \u00e0 jour corrigent \u00e9galement plusieurs failles d&#8217;ex\u00e9cution de code arbitraire affectant Apple Neural Engine (CVE-2022-32810, CVE-2022-32829 et CVE-2022-32840), Audio (CVE-2022-32820), Pilotes GPU (CVE-2022-32821), ImageIO (CVE-2022-32802), IOMobileFrameBuffer (CVE-2022-26768), Kernel (CVE-2022-32813 et CVE-2022-32815) et WebKit (CVE-2022- 32792).<\/p>\n<p>Un contournement d&#8217;authentification de pointeur affectant le noyau (CVE-2022-32844), un bogue DoS dans le composant ImageIO (CVE-2022-32785) et deux failles d&#8217;escalade de privil\u00e8ges dans AppleMobileFileIntegrity et File System Events (CVE-2022-32819) ont \u00e9galement \u00e9t\u00e9 corrig\u00e9s. et CVE-2022-32826).<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/crowdsec-tour-d\" target=\"_blank\" title=\"CyberSecurity\"><img loading=\"lazy\" decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" src=\"https:\/\/thehackernews.com\/new-images\/img\/b\/R29vZ2xl\/AVvXsEj6zHdXd3qpCksF0nkMkrjsOzaw-cxZGPHWoTEp9y7VPIeyPBFGsmIyIX8NTkqI1IDqnIXYnsZuIh4rc9f8TNUn7ndAZqtXc-t58X2oueTaL4Ijb4hgH-b183QvQ0ienXIipuOsqeLP5b8I2prKmp0RWvdZQgnKehVRKbqRQpin1JgfwlZeE_IB4EmesQ\/s1600\/crowdsec-728.jpg\" width=\"728\" height=\"90\" \/><\/a><\/div>\n<p>De plus, la derni\u00e8re version de macOS r\u00e9sout cinq vuln\u00e9rabilit\u00e9s de s\u00e9curit\u00e9 dans le module SMB qui pourraient \u00eatre potentiellement exploit\u00e9es par une application malveillante pour obtenir des privil\u00e8ges \u00e9lev\u00e9s, divulguer des informations sensibles et ex\u00e9cuter du code arbitraire avec les privil\u00e8ges du noyau.<\/p>\n<p>Il est recommand\u00e9 aux utilisateurs d&#8217;appareils Apple de mettre \u00e0 jour vers iOS 15.6, iPadOS 15.6, macOS (Monterey 12.5, Big Sur 11.6.8 et 2022-005 Catalina), tvOS 15.6 et watchOS 8.7 pour obtenir les derni\u00e8res protections de s\u00e9curit\u00e9.<\/p>\n<p><\/p>\n<\/div>\n<p><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/07\/apple-releases-security-patches-for-all.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Apple a \u00e9t\u00e9 d\u00e9ploy\u00e9 mercredi correctifs logiciels pour iOS, iPadOS, macOS, tvOS et watchOS afin de corriger un certain nombre de failles de s\u00e9curit\u00e9 affectant ses plates-formes. Cela inclut au moins 37 failles couvrant diff\u00e9rents composants d&#8217;iOS et de macOS, allant de l&#8217;\u00e9l\u00e9vation des privil\u00e8ges \u00e0 l&#8217;ex\u00e9cution de code arbitraire et de la divulgation d&#8217;informations [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":269674,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[8737,2479,4168,15954,91940,4158,4165,4161,133,3818,4157,4159,4171,4170,65,4167,4160,120,4163,4162,185,2212,1835,4172,4169,378,4166,4164,12365],"class_list":["post-269673","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-appareils","tag-apple","tag-comment-pirater","tag-correctifs","tag-corrigeant","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-des","tag-dizaines","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-les","tag-logiciel-malveillant-de-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-nouvelles","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-pour","tag-publie","tag-securite","tag-securite-informatique","tag-securite-internet","tag-tous","tag-violation-de-donnees","tag-vulnerabilite-logicielle","tag-vulnerabilites"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/269673","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=269673"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/269673\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/269674"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=269673"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=269673"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=269673"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}