(For more details, see our article, “ Apple’s Poor Patching Policies Potentially Make Users’ Security and Privacy Precarious.”)īack in April of this year, Apple released macOS Monterey 12.3.1, which similarly addressed two actively exploited (i.e.
We are still awaiting a response from Apple, and will update this article again if we receive a reply or if additional patches become available.Įven actively exploited vulnerabilities that affect older versions of macOS do not necessarily get patched for those older macOS versions.
The kernel vulnerability, however-assuming it also affects the two previous macOS versions-has not been patched. UPDATE: Approximately 90 minutes after this article was published, Apple released Safari 15.6.1 for Big Sur and Catalina to address the WebKit vulnerability. Apple typically releases some, but not all, security updates for the “ n minus 1″ and “ n minus 2″ major macOS versions.
/article/2010/06/15/162208-10.6.4_software_update.jpg "apple mac security update")
Notably, Apple did not release any updates for macOS Big Sur or macOS Catalina, the two previous versions of macOS. Whither macOS Big Sur and macOS Catalina updates? If your Mac is running High Sierra or older, look for macOS Monterey in the App Store and download it from there. You can get this update by going to System Preferences > Software Update, where compatible Macs running macOS Mojave or newer will see the Monterey update appear. Those are all the details that Apple has published regarding the security content of macOS Monterey 12.5.1. Apple is aware of a report that this issue may have been actively exploited.* Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.*ĭescription: An out-of-bounds write issue was addressed with improved bounds checking. Impact: An application may be able to execute arbitrary code with kernel privileges.
Only two security-related patches are known to be included in this update, but both of them are quite serious and require urgent patching: According to Apple’s macOS Monterey update release notes, macOS Monterey 12.5.1 “is recommended for all users and improves the security of macOS.” macOS Monterey 12.5.1Īpple’s latest Mac operating system update is available for all supported Macs currently running macOS Monterey. Let’s take a look at what these updates have to offer, as well as what Apple might have skipped updating. On Wednesday this week, Apple released updates for the current versions of macOS, iOS, and iPadOS to fix two “actively exploited” (i.e. Apple Apple Patches Two Actively Exploited Vulns in Monterey 12.5.1, iOS and iPadOS 15.6.1
0 kommentar(er)
