On January 14, Apple pushed an official update of iOS to iPhone users to address vulnerabilities in the iPhone and iPad.
According to the changelog description, this update fixes two bugs, including that "Messages" may not load photos sent via iCloud link, and third-party CarPlay apps may not respond to input.
At the same time, Apple has fixed the HomeKit vulnerability, solving a denial of service vulnerability that could lead to a maliciously crafted HomeKit name, which would cause iPhones and iPads to fail to work.
Apple explained that this was caused by a problem of resource exhaustion, which has now been solved by improving input verification.
In iOS 15.1, the vulnerability was partially fixed by limiting the length of the name that can be set for a HomeKit device or app, but it did not fully fix the issue because a malicious person exploiting the vulnerability could use a Home invitation instead of the device to trigger the attack again.
Because this vulnerability can lead to data loss in the worst case scenario and device reset in the best case, it is recommended to update to iOS and iPadOS 15.2.1 immediately.