Apple Issues Urgent Patch for Zero-Click Image Flaw

On August 20, Apple released an unscheduled security update for all major platforms—iOS, iPadOS, macOS, and others. The patch addresses CVE-2025-43300, a buffer overflow vulnerability in the ImageIO framework, by enforcing stricter boundary checks during image processing. The flaw has attracted significant attention, having been flagged as “exploited in the wild” in zero-click attacks requiring no user interaction.

Separately, WhatsApp issued its own fix, noting that attackers could trick a victim’s device into fetching a resource from an arbitrary URL and processing it. Researchers believe this issue may have been exploited as part of a chain alongside CVE-2025-43300.

Security analysts quickly dissected the patch and traced the root cause. According to their findings, the flaw resides in the DNG format handler, specifically when “digital negative” files contain data compressed with the JPEG Lossless algorithm. Binary analysis pinpointed the changes within the RawCamera component of ImageIO. In the updated builds, Apple added explicit buffer-size checks and exception handling to prevent writes from exceeding allocated memory during image strip decompression.

The vulnerability stemmed from flawed logic in frame unpacking: the code assumed a minimum of two components based on the “samples per pixel” value, while in reality the stream could contain only one. This mismatch caused the decompression loop to continue writing beyond the allocated buffer. In TIFF-based DNG structures using RowsPerStrip, StripOffsets, and StripByteCounts, this miscalculation led directly to buffer overflow.

Developers and reverse engineers noted the minimal scope of code modifications—as expected in an out-of-band patch—yet these small adjustments were critical to neutralizing a dangerous zero-click exploit. According to researchers, the attack could be triggered simply by receiving a malicious image via messaging apps or other channels where media files are automatically parsed by the system. Even if intermediate services modified quality or metadata, the exploit conditions remained intact.

The takeaway, though unsurprising, is vital: media format parsers are among the most treacherous components of any system. An error in component counts or buffer calculations may appear trivial in hindsight but is notoriously difficult to detect without targeted review. The vulnerable function, sprawling with Huffman tables, complex branching, and deep framework integrations, obscured the flaw. The fix itself is straightforward—enhanced buffer management and immediate termination upon attempted memory overrun.

Users are strongly urged to install the latest system updates without delay. Even though the vulnerability has been patched, this case serves as a stark reminder: any automatic parsing of media—be it images, documents, or archives—demands rigorous safeguards at the platform level. For Apple’s ecosystem, the new update delivers precisely that, reinforcing memory boundaries when handling DNG and JPEG Lossless content.

Support Our Threat Intelligence

If you find our technology report and cybersecurity news helpful, consider supporting our work.

Buy Me a Coffee PayPal Crypto

USDT (TRC20):

TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm Copy

USDT (ERC20):

0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce Copy