APPLE has released a patch for iOS and iPadOS to fix a Notification Services flaw that could cause notifications marked for deletion to be retained on the device, tracked as CVE-2026-28950. The advisory describes it as a logging issue corrected by improved data redaction, noting that notifications marked for deletion could unexpectedly persist.
The fix applies to a broad range of devices, including iPhone 11 and later, iPad Pro models, iPad Air 3rd generation and later, iPad 8th generation and later, and iPad mini 5th generation and later in iOS 26.4.2 and iPadOS 26.4.2, as well as many earlier iPhone and iPad models in iOS 18.7.8 and iPadOS 18.7.8.
The update follows reports that copies of incoming Signal messages could be saved in the device’s push notification database, a situation highlighted by sources cited in the piece, and Signal has urged users to install the patch to ensure no further notifications are preserved for deleted apps.