Reprinted from TidBITS by permission; reuse governed by Creative Commons
license BY-NC-ND 3.0. TidBITS has offered years of thoughtful commentary
on Apple and Internet topics. For free email subscriptions and access to the
entire TidBITS archive, visit http://www.tidbits.com/


   Security Update 2018-001 (Sierra and El Capitan)

   Agen G. N. Schmitz

   Apple has released Security Update 2018-001 for macOS [1]10.12 Sierra
   and [2]10.11 El Capitan, patching security vulnerabilities that the
   company addressed in 10.13.3 High Sierra (see '[3]Apple Releases iOS
   11.2.5, macOS 10.13.3, watchOS 4.2.2, and tvOS 11.2.5,' 23 January
   2018). Both of the older operating systems resolve kernel-related
   issues associated with the Meltdown security vulnerability (see
   '[4]Apple Releases Meltdown and Spectre Info and Updates,' 5 January
   2018), plus a Wi-Fi-related vulnerability that could allow an
   application to read restricted memory. Additionally, the security
   update for 10.12 Sierra deals with a memory corruption issue that could
   allow arbitrary code execution after processing a maliciously crafted
   audio file. (Free. For 10.12.6 Sierra, 766.6 MB; for 10.11.6 El
   Capitan, 863 MB; [5]security content release notes)

References

   1. https://support.apple.com/kb/DL1956?
   2. https://support.apple.com/kb/DL1955
   3. http://tidbits.com/article/17751
   4. http://tidbits.com/article/17712
   5. https://support.apple.com/en-us/HT208465

.