Apple has released Security Update 2020-006 for macOS 10.14 Mojave and 10.13 High Sierra to patch a trio of security vulnerabilities in the older operating systems (see “Apple Updates Numerous Operating Systems for Exploited Security Vulnerabilities,” 5 November 2020). They address a memory corruption issue that could allow a maliciously crafted font to execute arbitrary code, improve state handling to prevent a malicious application from executing arbitrary code with kernel privileges, and resolve a memory initialization issue that could disclose kernel memory. You can access the updates via Software Update. We haven’t heard of any problems related to these updates, and the vulnerabilities they eliminate are being exploited in the wild. So we recommend updating soon. (Free, various sizes, release notes)
Subscribe today so you don’t miss any TidBITS articles!
Every week you’ll get tech tips, in-depth reviews, and insightful news analysis for discerning Apple users. For 29 years, we’ve published professional, member-supported tech journalism that makes you smarter.
Registration confirmation will be emailed to you.
Get your CompTIA A+, Network+ White Hat-Hacker, Certified Web Intelligence Analyst and more starting at $35 a month. Click here for more details.