Critical Security Updates From MacOS, iOS and Safari released by Apple

Apple has rolled out security updates for its seven product lines MacOS, iOS, WatchOS, iTunes for Windows, tvOS, iCloud for Windows and Safari. The updates were released to fix issues CVE-2018-4241 and CVE-2018-4243 which were discovered by an Engineer at Google named Ian Beer. The issue is due to the buffer overflow in Kernel Code which can lead to a Hacker executing malicious code within the kernel which will give him full access to the device. Apple hasn’t made the changelog public yet for iOS, watchOS and tvOS in an attempt to protect the users and avoid pointing hackers in the direction of where the flaw exists.

The Researcher who  discovered the flaw might release more details via the Google Project Zero Bug Tracker next week.

Name and information link

 

Available for Release date
Safari 11.1.1 OS X El Capitan 10.11.6, macOS Sierra 10.12.6, and macOS High Sierra 10.13.4 01 Jun 2018
iCloud for Windows 7.5 Windows 7 and later 01 Jun 2018
macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.4 01 Jun 2018
iOS 11.4 iPhone 5s and later, iPad Air and later, and iPod touch 6th generation 29 May 2018
watchOS 4.3.1 All Apple Watch models 29 May 2018
iTunes 12.7.5 for Windows Windows 7 and later 29 May 2018
tvOS 11.4 Apple TV 4K and Apple TV (4th generation) 29 May 2018

“The macOS High Sierra 10.13.5 Update improves the stability, performance, and security of your Mac, and is recommended for all users.

This update adds support for Messages in iCloud, which lets you store messages with their attachments in iCloud and free up space on your Mac. To enable Messages in iCloud, go to Preferences in Messages, click Accounts, then select ”Enable Messages in iCloud.”

Take your time to comment on this article.

Related posts

Water Facilities Must Secure Exposed HMIs – Warns CISA

Microsoft December Patch Tuesday Arrived With 70+ Bug Fixes

NachoVPN Attack Risks Corporate VPN Clients