![]() In addition to the issues described above, this latest round of macOS updates addresses dozens of other individual security vulnerabilities. This is a good reminder of why you should never open files from unknown sources, and of why it’s very important to learn how to spot phishing attacks. ![]() The Model I/O updates deal with flaws that could have allowed similar malicious activities to take place, and could also have caused memory corruption issues.Īccording to Apple, the vulnerabilities could have been exploited through the processing of maliciously crafted images and files. The ImageIO updates address vulnerabilities that could have led to several different undesirable outcomes, including arbitrary code execution, denial of service issues, and crashes. There were also multiple security patches to ImageIO and Model I/O, which are image-processing frameworks used on macOS. Apple’s Security release notes indicate that this fix only pertains to Big Sur. This flaw can allow an attacker to execute code on a Mac, and so is another high-priority issue. The other vulnerability that is reportedly under active exploitation affects WebKit, the web browser engine that powers Safari, Mail, and many other macOS apps. Again, since the vulnerability is now public knowledge, and since Apple has received reports that it has already been exploited, it is imperative for all Mac users to update their systems immediately. Under the right circumstances, a bad actor can use this kernel flaw to gain elevated privileges on a target Mac. The vulnerability is present in Big Sur, Catalina, and Mojave. This exact same issue, numbered CVE-2021-1782, also affected iOS, iPadOS, tvOS, and watchOS, and was addressed last week in Apple’s updates to those OSes. The most critical patch is for a kernel vulnerability that may have already been exploited in the wild. ![]() ![]() More active exploitation (this time in macOS) This update has important security patches to vulnerabilities that may be under active exploitation. Apple has just released macOS Big Sur 11.2 (and the related Security Update 2021-001 Catalina and Security Update 2021-001 Mojave). ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |