Summary of important security fixes in macOS

A lot has changed in recent versions of macOS over the last couple of weeks. This is a summary of what’s happened, and the updates available for Macs running Mojave, Catalina and Big Sur.

Mojave

Apple released Mojave Security Update 2021-003 on 26 April 2021. Its security release notes are here, and a standalone installer package is available from here.

Apple also released an update to Safari 14.1, but the inital update contained some bugs which made it impossible to access some websites. An updated update now fixes those, and contains urgent fixes for two vulnerabilities affecting WebKit which Apple believes are already being exploited, as detailed here.

Apple strongly recommends all those using Mojave to install Security Update 2021-003 and update Safari to 14.1. Once you have done that, check the build number of Safari is now 14611.1.21.161.7 to ensure that you’re fully protected.

Anyone choosing to delay or deny either of these two important security updates needs to run additional security software to ensure that their vulnerable system is protected against these exploits: you’re on your own!

Catalina

Apple released Catalina Security Update 2021-002 on 26 April 2021. Its security release notes are here, and a standalone installer package is available from here.

Apple strongly recommends all those using Catalina to install Security Update 2021-002 and update Safari to 14.1. Once you have done that, check the build number of Safari is now 15611.1.21.161.7 to ensure that you’re fully protected.

Big Sur

Apple released Big Sur 11.3 on 26 April 2021. Its security release notes are here. Among the vulnerabilities it fixes is a major security vulnerability explained in detail by Patrick Wardle. The message is clear that all Big Sur users should update as soon as they can.

That update included an update bringing Safari and WebKit to version 14.1, but that has since proved to contain two serious vulnerabilities which Apple believes are already being exploited. Those are addressed in Big Sur 11.3.1, released on 3 May 2021. Its security release notes are here. That update increments the Safari and WebKit build numbers from 16611.1.21.161.3 to 16611.1.21.161.6, and it’s worth checking that happens correctly once you’ve installed the 11.3.1 update.

Apple strongly recommends all those using Big Sur to update to 11.3.1. However, Apple doesn’t provide any standalone updaters to help this, and you’ll need to use Software Update. If you’re unable to do that, or that update fails (as it may on external bootable disks attached to an M1 Mac), you’ll need to download the full 11.3.1 installer, from the App Store or softwareupdate command tool, or Mr Macintosh’s alternate Apple sources. Although running the full installer shouldn’t break your current Data volume, you must ensure that you have a good backup before trying that, in case it does.

Anyone choosing to delay or deny these important security updates needs to run additional security software to ensure that their vulnerable system is protected against these exploits: you’re on your own!

All users Mojave to Big Sur

Be aware that after applying these system and security updates, you may find that the versions of XProtect and MRT have been downgraded by the upgrade. These should correct automatically over the following minutes, but if they don’t, you should use my free SilentKnight to check, download and install them.

The above is current as of 0630 UTC 5 May 2021.

6Comments

Add yours

1

John on May 5, 2021 at 8:00 am

Thank for for posting such a summary, Howard.

The arrary of devices and software that needs to be kept up to date now can be a chore to parse and administer, even if one remains vigilant.

One could also opt to be blisfully unware, and allows Apple’s automatic software update mechanisms to relieve one of such burdens, but unfotunately, the qualitiy of Apple’s software relases can compel against that, as illustrated again by Safari 14.1.

LikeLiked by 1 person
- 2
  
  hoakley on May 5, 2021 at 8:01 pm
  
  Thank you.
  I do think it’s important to know that your Mac is fully up-to-date with security fixes, rather than just blindly assuming that macOS will handle that for you.
  Howard.
  
  LikeLike
3

EcleX on May 7, 2021 at 7:00 am

Thanks. Three days ago I checked with SilentKnight and it showed a new MRT 1.78 for iMac18,3 with macOS 11.3.1 (20E241) Big Sur. I report it here, since these security updates are usually announced here, but that one was not, as far as I know.

BTW, in macOS Sierra, such Mac showed a high CPU (over the roof!) and disk activity for several minutes after cold booting. Now in Big Sur, the CPU activity is significantly lower, albeit takes also several minutes, together with disk (mostly read) activity, as shown by MenuMeters.

Amazingly, Mountain in Big Sur (not in Sierra before) shows also a lot of activity notifications mounting-unmounting many different “Time Machine Backup@snap-XXX”, where XXX are different numbers (it shows 14 now in its menu list!). I wonder if that is normal.

LikeLiked by 1 person
- 4
  
  hoakley on May 7, 2021 at 7:58 am
  
  Thank you.
  MRT 1.78 was pushed on 30 April, and is detailed here.
  The background mounting and unmounting of TMA snapshots is for them to be indexed by Spotlight, and is described here.
  Howard.
  
  LikeLike
  - 5
    
    EcleX on May 7, 2021 at 12:23 pm
    
    Thanks. Actually, I updated all with SilentKnight on 30th April, but I guess that it did not update properly MRT (I want to remember that vaguely). But that was in Sierra. Then I upgraded to Big Sur, and then was when SilentKnight updated MRT. That could explain it.
    
    LikeLiked by 1 person
    - 6
      
      hoakley on May 7, 2021 at 12:48 pm
      
      When you upgrade or update to a new version of macOS, it installs the versions of MRT and XProtect which it shipped with, which are normally one or two versions behind those current when that installer is built. Therefore, after installing any macOS update, including Security Updates, you should always check that your Mac has also been updated again to those current versions. You can either leave it to automatic updates to catch up in time, or force that using SilentKnight. I do the latter, of course.
      Howard.
      
      LikeLike

Share this:

Related