Apple has released Security Update 2018-004 for macOS 10.12 Sierra and 10.11 El Capitan, patching security vulnerabilities that the company addressed in 10.13.6 High Sierra (see “Apple Releases macOS 10.13.6, iOS 11.4.1, tvOS 11.4.1, and watchOS 4.3.2,” 9 July 2018). The security updates for both Sierra and El Capitan address a memory corruption issue that would enable a malicious application to break out of its sandbox, patch a data leakage vulnerability related to the Lazy FP state restore issue with Intel Core-based microprocessors (see this Secplicity article for more information), and resolve another memory corruption issue that could allow an application to gain elevated privileges. (Free. For macOS 10.12.6 Sierra, 750 MB; for macOS 10.11.6 El Capitan, 859 MB; release notes)
Subscribe today so you don’t miss any TidBITS articles!
Every week you’ll get tech tips, in-depth reviews, and insightful news analysis for discerning Apple users. For 28 years, we’ve published professional, member-supported tech journalism that makes you smarter.
Registration confirmation will be emailed to you.