Apple releases MacOS and Safari updates, patching multiple Remote and local Arbitrary Code Execution vulnerabilities
Apple has released updates to MacOS Big Sur, Catalina, and Mojave, as well as the Safari browser.
The updates fix a Remote Code Execution vulnerability in Big Sur’s libxml2 library, and multiple Arbitrary Code Execution vulnerabilities affecting the products.
Apple Security Advisories
- macOS Big Sur 11.5 – 1 Remote Code Execution and 17 Arbitrary Code Execution vulnerabilities fixed.
- Security Update 2021-004 Catalina – 12 Arbitrary Code Execution vulnerabilities fixed.
- Security Update 2021-005 Mojave – 9 Arbitrary Code Execution vulnerabilities fixed.
- Safari 14.1.2 – 2 Arbitrary Code Execution vulnerabilities fixed.
Mitigation
For full mitigation CYREBRO recommends implementing any relevant updates available on your systems.
References: Apple Security Advisory
