Today Apple released new software updates across its variety of platforms, including iOS 26.0.1, macOS Tahoe 26.0.1, iOS 18.7.1, and more. Most of the new updates offer security fixes, but it turns out there’s one specific vulnerability Apple has addressed, and it has to do with FontParser.
iOS 26.0.1, iOS 18.7.1, and more fix FontParser security issue
Apple’s latest software updates include a variety of smaller changes for users.
The biggest release, in terms of listed notes at least, is iOS 26.0.1. The update includes a variety of bug fixes, particularly for iPhone 17 and iPhone Air.
But across the lineup of updates, Apple’s release notes mention “security updates” repeatedly.
Now, Apple’s website has revealed exactly what those security fixes are—and it’s ultimately just one fix applied across several platforms.
FontParser Impact: Processing a maliciously crafted font may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds write issue was addressed with improved bounds checking.
This same issue applied across iPhone, iPad, Mac, and Vision Pro, and was fixed in the following updates:
iOS and iPadOS 26.0.1
iOS and iPadOS 18.7.1
macOS Tahoe 26.0.1
macOS Sequoia 15.7.1
macOS Sonoma 14.8.1
and visionOS 26.0.1
The only updates that don’t specifically mention this FontParser fix are watchOS 26.0.2 and tvOS 26.0.1—presumably because those platforms weren’t impacted.
Apple’s internal teams discovered the vulnerability themselves. And there’s no mention by Apple of the issue actually being exploited in real-world use, so presumably the impact has been minimal to nonexistent to this point.
However, just because something hasn’t become a problem yet doesn’t mean it couldn’t be later. As always, it’s recommended to install the latest software for security updates as soon as possible.
Best iPhone accessories