Apple Releases iOS 26.2, Patches Exploited WebKit Flaws

Apple released iOS 26.2 to the public on December 12 and 13, 2025, delivering a mix of functionality improvements and urgent security patches across its platforms. The software roll out arrived alongside companion updates for iPadOS, macOS, watchOS, tvOS and visionOS, and an Apple security document that catalogs more than 20 fixes, including two WebKit vulnerabilities Apple said may have been exploited in targeted attacks.

The WebKit issues, reported by several outlets, were noted as being exploited in versions prior to iOS 26, which is one reason Apple and security reporters urged users to install the update quickly. Apple also published entries with Common Vulnerabilities and Exposures identifiers where possible. One named example in the support notes is CVE 2025 46277, attributed to Kirin and listed as addressing an App Store logging problem by improving data redaction. Similar logging and redaction work was applied to Screen Time, and the support document specifies which device models receive each fix.

Security changes in iOS 26.2 build on protections Apple introduced in iOS 26.1, when a Background Security Improvements capability began applying some updates on the fly. Apple and outlets noted that devices upgraded to iOS 26.1 with that feature enabled may already be protected against the particular spyware activity referenced, but Apple’s guidance is that users should still install iOS 26.2 for full protection. For users who prefer to remain on older software branches, Apple simultaneously released iOS 18.7.3, which includes fixes for the dangerous flaws and provides an alternate upgrade path.

Beyond security, iOS 26.2 brings a host of user facing additions. Reminders can now create alarms tied to items, Safety Alerts have been expanded to include more detailed information and maps of affected areas, and Podcasts gained auto generated episode chapters. AirDrop received a security tightening with an option to require verification codes, and Apple added a Lock Screen transparency slider to adjust the controversial Liquid Glass effect. Apple Music now supports offline lyrics, Sleep receives score revisions and new controls, and Freeform gains tables that dynamically resize for text, images and drawings. AirPods Live Translation was added for the European Union, and accessibility options were extended so the entire screen can flash for alerts.

The update reaches across Apple’s ecosystem. iPadOS mirrors many of the iPhone changes and adds drag and drop windowing gestures to smooth multitasking. macOS Tahoe 26.2 introduces Edge Light that turns the Mac display into a ring light for video calls. watchOS fixes a stuck song issue in the Music app and adds Sleep app controls. tvOS allows profiles for people who do not have Apple Accounts and adds new restriction options for child profiles. visionOS 26.2 expands Travel Mode settings for cars and buses.

Apple’s security support document lists device availability for each fix, and it remains the authoritative source for technical details. For most iPhone and iPad users Apple and reporting outlets recommend installing iOS 26.2 as soon as possible via Settings, General, Software Update, or applying iOS 18.7.3 if they wish to stay on an older branch.