June 2026 Apple Updates - SANS Internet Storm Center
Apple released security updates for iOS/iPadOS 26.5.2, macOS Tahoe 26.5.2, and Safari 26.5.2, addressing multiple vulnerabilities that primarily impact browser components such as WebKit, libxslt, WebRTC, and Web Extensions. CVE-2026-39868, CVE-2026-43676, CVE-2026-43700, CVE-2026-43701, CVE-2026-43703, CVE-2026-43704, CVE-2026-43705, CVE-2026-43706, CVE-2026-43707, CVE-2026-43708, CVE-2026-43712, CVE-2026-43713, CVE-2026-43715, CVE-2026-43716, CVE-2026-43718, CVE-2026-43720, CVE-2026-43721, CVE-2026-43722, CVE-2026-43724, CVE-2026-43725, CVE-2026-43727, CVE-2026-43732, CVE-2026-43735, CVE-2026-43740, CVE-2026-43742, CVE-2026-43743, CVE-2026-43745, CVE-2026-43746, and CVE-2026-43732 are included, with additional issues in the Kernel and IOGPUFamily. None of the reported flaws are labeled as “exploited,” but the browser-focused nature makes timely patching important.
Apple released updates for iOS/iPadOS, macOS, and Safari on Monday. There have been no updates for other Apple operating systems (visionOS, watchOS, tvOS). Usually, Apple updates all products at the same time.
Most of the vulnerabilities affect the web browser (WebKit, libxslt, WebRTC, and Web Extension). Only four of the vulnerabilities are not directly related to web content: Three Kernel issues and one vulnerability in the IOGPUFamily.…