Apple’s latest Background Security Improvement targets a WebKit flaw

A Background Security Improvement in iOS 26.3.1 fixes a WebKit issue in Safari that could break one of the web’s most important safety rules.

Safari web browser app icon showing a blue circular compass with white tick marks and a red and white needle, centered on a white rounded square against a blue gradient background

Apple has fixed a WebKit bug for Safari and other browsers

Apple released a Background Security Improvement on March 17 for iOS 26.3.1, iPadOS 26.3.1, macOS 26.3.1, and macOS 26.3.2. The update fixes a WebKit flaw that could let a malicious website bypass a key browser security rule.

The company said the issue was caused by a cross-origin problem in the Navigation API and assigned it CVE-2026-20643. Apple addressed the flaw by improving input validation to stop harmful web content from breaking the browser’s protections.

Continue Reading on AppleInsider | Discuss on our Forums