WebKit fixes are coming to older versions of macOS.
What you need to know
- Apple has released Safari 14.1 today.
- The release patches a WebKit security vulnerability on macOS Catalina and Mojave.
Apple has patched a WebKit vulnerability that was affecting Safari on the Mac.
As reported by 9to5Mac, Apple has released Safari 14.1 for users running macOS Catalina and macOS Mojave. The update patches a security vulnerability with WebKit that was fixed earlier this week for users on iOS 14.5 and macOS Big Sur.
Earlier this week, Apple released iOS 14.5.1 and macOS Big Sur 11.3.1 with an important security update that fixed a serious WebKit exploit. Today the company released Safari 14.1 for users running macOS Catalina and macOS Mojave, which also fixes the exploit that had been being used for malicious web content.
As Apple detailed earlier this week, the exploit found in WebKit had been exploited to execute arbitrary code on a user's device without consent.
While the updates to iOS and macOS Big Sur patched the issue for those users, Apple has now released Safari 14.1 to fix the vulnerability for users running older versions of macOS.
WebKit
Available for: macOS Catalina and macOS Mojave
Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Description: A memory corruption issue was addressed with improved state management.
CVE-2021-30665: yangkang (@dnpushme)&zerokeeper&bianliang of 360 ATA
WebKit
Available for: macOS Catalina and macOS Mojave
Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Description: An integer overflow was addressed with improved input validation.
CVE-2021-30663: an anonymous researcher
Users on macOS Catalina and macOS Mojave can initiate the update to Safari by going to System Preferences > Software Update.
0 comments:
Post a Comment