Apple has released an iOS update to version 5.1.1 which addresses some bugs and resolved some critical security vulnerabilities in the Safari web browser.
Among the bugs fixed, iOS 5.1.1 is said to "improves reliability of using HDR option for photos taken using the Lock Screen shortcut." Also resolved are bugs that stop the third-generation 3G-equipped iPad from switching between 2G and 3G networks.
Apple has also fixed another bug that where users would be greeted with at least one instance of Apple’s trademark infuriatingly uninformative error messages. Apparently now "unable to purchase" will no long appear after a buying something successfully via iTunes.
While none of these might sound sexy enough to prompt Apple gear owners to update, the security fixes are more serious. One of the fixes involves a cross-site scripting vulnerability in the WebKit rendering engine that’s part of the Safari web browser. That flaw came to light in Google’s Pwnium hacker contest earlier this year.
Google also found another WebKit related flaw that also could result in executing malicious code right off a web page, never a good thing. Another URL spoofing security flaw has also been fixed in the update which could be used to make convincing phishing attacks on unsuspecting users.
As usual the iOS update will appear in iTunes and will be offered for download and installation automatically. Settings -> General -> Software Update will also get the update without connecting the device to a host PC or Mac.