Apple Security Update: 18 CVEs Fixed in WebKit, Kernel, CoreAudio (CVE-2025-31251, etc.)

Critical Vulnerability Information AppleJPEG Impact: Processing maliciously crafted media files may lead to unexpected application termination or process memory corruption. CVE: CVE-2025-31251 CoreBluetooth Impact: Malicious applications may access sensitive user data. CVE: CVE-2025-31212 CoreAudio Impact: Processing malicious audio files may lead to code execution. CVE: CVE-2025-31200 CoreAudio Impact: Parsing files may lead to unexpected application termination. CVE: CVE-2025-31208 CoreGraphics Impact: Parsing files may lead to user information disclosure. CVE: CVE-2025-31239 CoreMedia Impact: Processing maliciously crafted video files may lead to unexpected application termination or process memory corruption. CVE: CVE-2025-31233 ImageIO Impact: Processing malicious image files may lead to denial of service. CVE: CVE-2025-31226 Kernel Impact: Attackers may cause unexpected system termination or kernel memory corruption. CVE: CVE-2025-31219 Kernel Impact: Remote attackers may cause unexpected application termination. CVE: CVE-2025-31241 libexpat Impact: Multiple issues, including unexpected application termination or arbitrary code execution. CVE: CVE-2024-4876 mDNSResponder Impact: Users may be able to escalate privileges. CVE: CVE-2025-31222 Security Impact: Remote attackers may disclose memory contents. CVE: CVE-2025-31221 WebKit Impact: Type confusion issue may lead to memory corruption. CVE: CVE-2025-26213 WebKit Impact: Processing maliciously crafted web content may lead to memory corruption. CVE: CVE-2025-31223 WebKit Impact: Processing maliciously crafted web content may lead to unexpected Safari crashes. CVE: CVE-2025-31204 WebKit Impact: Processing maliciously crafted web content may lead to unexpected process crashes. CVE: CVE-2025-31215 WebKit Impact: Processing maliciously crafted web content may lead to unexpected Safari crashes. CVE: CVE-2025-31206 WebKit Impact: Malicious websites may steal cross-origin data. CVE: CVE-2025-31095 WebKit Impact: Processing maliciously crafted web content may lead to unexpected Safari crashes. CVE: CVE-2025-31287

Goal Reached Thanks to every supporter — we hit 100%!

Apple Security Update: 18 CVEs Fixed in WebKit, Kernel, CoreAudio (CVE-2025-31251, etc.)