top | item 44235273

(no title)

jagger27 | 8 months ago

Web browser engine, and OpenSSL (or equivalent) patches alone are the main concern in userspace. Those codebases are a constantly moving target. Look at the stream of CVEs and security patches that Apple publishes. Almost every bug affects every product because of how much code is shared up and down the stack.

discuss

Schiendelman|8 months ago

You know they keep updating Safari and making security updates for old OSes for years, right?

smaccona|8 months ago

Apple is definitely not the worst in this regard, but the most recent version of iOS to support the iPad 3rd generation (the device we are discussing which is being used as a PDF reader) is iOS 9.3.5 (a security/bugfix release on August 25, 2016 which supports the WiFi-only version of the iPad 3rd generation) or iOS 9.3.6 (also a bugfix release on July 22, 2019 which supports the WiFi+cellular version of the same device - specifically, this was a fix to keep GPS working).

The iPad 3rd generation was released in 2012, so the 2016 9.3.5 iOS release gave 4 years of security/bugfix support for the WiFi-only version of that device.