Apple ships iOS 15.8.7 and iPadOS 15.8.7 to bring Coruna-related fixes to older devices

Apple has released iOS 15.8.7 and iPadOS 15.8.7 for older iPhones and iPads, bringing four previously shipped security fixes to devices that cannot move to newer operating systems. Apple says the update is recommended and that each of the four fixes is associated with the Coruna exploit.

The affected devices include the iPhone 6s lineup, iPhone 7 lineup, first-generation iPhone SE, iPad Air 2, iPad mini 4, and iPod touch 7th generation. Apple published the security notes on March 11, 2026.

This matters because these products no longer receive the latest major iOS releases. Instead of leaving them behind, Apple has backported fixes from iOS 16 and iOS 17, covering a kernel flaw and three WebKit bugs that could let malicious apps or crafted web content compromise a device.

Apple’s wording is careful, but clear. The company says one bug could let an app execute arbitrary code with kernel privileges, while the WebKit bugs could let malicious web content trigger arbitrary code execution or memory corruption. In practical terms, that means older supported devices needed this patch even if users only browse the web and do not install unfamiliar apps.

What Apple fixed in iOS 15.8.7

One useful detail in Apple’s advisory is that it explicitly ties all four fixes to Coruna. That makes this stronger than a generic maintenance update. Apple is telling users that these are not random old bugs pulled from storage, but fixes linked to a named exploit set that already shaped prior iOS security releases.

Devices that should install the update

• iPhone 6s
• iPhone 6s Plus
• iPhone 7
• iPhone 7 Plus
• iPhone SE, 1st generation
• iPad Air 2
• iPad mini, 4th generation
• iPod touch, 7th generation

Apple also released iOS 16.7.15 and iPadOS 16.7.15 for another older-device tier, and that update includes at least one Coruna-associated WebKit fix as well. That suggests Apple is still patching older supported hardware families where practical, not only current flagship devices.

Why this update matters

Older iPhones and iPads often stay in use for years as secondary phones, family devices, kiosks, or business handsets. That makes them attractive targets if threat actors know the hardware cannot move to the newest platform version. Apple’s approach here closes part of that gap by backporting security content instead of ending protection outright.

The sample article also overreached in one area. Apple’s advisory does link the fixes to Coruna, but it does not say users can be “fully compromised simply by visiting a malicious website” in every case, and it does not describe the full exploit chain in that way. What Apple does say is narrower and more defensible: malicious web content may lead to arbitrary code execution or memory corruption, and one kernel flaw may let an app execute code with kernel privileges.

How to update

• Open Settings
• Tap General
• Tap Software Update
• Install iOS 15.8.7 or iPadOS 15.8.7
• Restart the device if prompted

Apple’s iOS 15 update page says iOS 15.8.7 provides important security fixes and recommends the update for eligible iPhones.

Quick takeaways

• Apple released iOS 15.8.7 and iPadOS 15.8.7 on March 11, 2026
• The update brings four Coruna-associated fixes to older devices
• The patched bugs affect the kernel and WebKit
• Eligible users should install the update as soon as possible

FAQ