苹果发布iOS 15.8.7更新，修复针对2015年发布的iPhone 6S的Coruna漏洞。

苹果发布iOS 15.8.7更新，修复针对2015年发布的iPhone 6S的Coruna漏洞。
Apple releases iOS 15.8.7 to fix Coruna exploit for iPhone 6S from 2015

原始链接: https://support.apple.com/en-us/126632

苹果发布了针对旧设备的安全性更新，包括iPhone 6s/7/SE（第一代）、iPad Air 2、iPad mini（第四代）和iPod touch（第七代）——特别是那些无法更新到最新iOS版本的设备。这些更新解决了被“Coruna”漏洞和其他问题利用的漏洞。修复内容包括改进内存管理，以及检查以防止内核权限下的任意代码执行和处理恶意网络内容时出现的内存损坏。修复了四个特定漏洞（CVE-2023-41974、CVE-2024-23222、CVE-2023-43000和CVE-2023-43010），修复程序最初发布在iOS版本16.6、17、17.2和17.3中。苹果坚持在修复程序可用之前不公开披露安全问题的政策，更多信息可在苹果产品安全页面上找到。

苹果最近发布了iOS 15.8.7，这是一个专门针对新发现的名为“Coruna”漏洞的安全更新，该漏洞影响了2015年的iPhone 6S。此补丁引发了关于苹果持续支持旧设备以及发布针对老化操作系统的更新的门槛的问题。 Hacker News上的讨论集中在苹果是否应该赞扬这种长期支持，考虑到苹果的高端定价。一些人认为这些更新证明了其价值，并指出设备的寿命延长和电子垃圾的减少。另一些人则认为，即使提供这些延长更新，苹果也*应该*降低价格。评论员还注意到与Android设备的对比，许多Android设备获得的更新窗口远短得多，即使价格相当。此更新凸显了苹果对安全的承诺，即使对于十年前的设备，但也引发了关于科技生态系统内价值和定价的争论。

For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security releases page.

Apple security documents reference vulnerabilities by CVE-ID when possible.

For more information about security, see the Apple Product Security page.

Available for: iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation)

Impact: An app may be able to execute arbitrary code with kernel privileges. This fix associated with the Coruna exploit was shipped in iOS 17 on September 18, 2023. This update brings that fix to devices that cannot update to the latest iOS version.

Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-41974: Félix Poulin-Bélanger

Available for: iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation)

Impact: Processing maliciously crafted web content may lead to arbitrary code execution. This fix associated with the Coruna exploit was shipped in iOS 17.3 on January 22, 2024. This update brings that fix to devices that cannot update to the latest iOS version.

Description: A type confusion issue was addressed with improved checks.

CVE-2024-23222

Available for: iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation)

Impact: Processing maliciously crafted web content may lead to memory corruption. This fix associated with the Coruna exploit was shipped in iOS 16.6 on July 24, 2023. This update brings that fix to devices that cannot update to the latest iOS version.

Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-43000: Apple

Available for: iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation)

Impact: Processing maliciously crafted web content may lead to memory corruption. This fix associated with the Coruna exploit was shipped in iOS 17.2 on December 11th, 2023. This update brings that fix to devices that cannot update to the latest iOS version.

Description: The issue was addressed with improved memory handling.

CVE-2023-43010: Apple

Information about products not manufactured by Apple, or independent websites not controlled or tested by Apple, is provided without recommendation or endorsement. Apple assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Apple makes no representations regarding third-party website accuracy or reliability. Contact the vendor for additional information.

Published Date: March 11, 2026

苹果发布iOS 15.8.7更新，修复针对2015年发布的iPhone 6S的Coruna漏洞。 Apple releases iOS 15.8.7 to fix Coruna exploit for iPhone 6S from 2015

苹果发布iOS 15.8.7更新，修复针对2015年发布的iPhone 6S的Coruna漏洞。
Apple releases iOS 15.8.7 to fix Coruna exploit for iPhone 6S from 2015