Network Security, Patch/Configuration Management, Vulnerability Management

Apple exterminates bugs in iCloud for Windows, macOS High Sierra, macOS Server

Apple on Monday issued security updates for its macOS operating system, macOS Server, and iCloud for Windows products, fixing 67 vulnerabilities.

The latest major release of macOS – version 10.13, aka High Sierra – rectifies 43 bugs affecting the following features: Application Firewall, AppSandbox, the Captive Network Assistant, CFNetwork Proxies, CoreAudio, Directory Utility, file, Heimdal, IOFireWireFamily, Kernel, libc, libexpat, Mail, Mail Drafts, ntp, Screen Lock, Security, SQLite, and zlib.

Meanwhile, the newest iteration of macOS Server, version 5.4, has addressed a read or write overflow and a separate read overflow in FreeRADIUS by updating the open-source RADIUS server to version 2.2.10.

And the release of iCloud of Windows 7.0 fixed a memory corruption issue in the SQLite library, and 21 flaws in WebKit, including memory corruptions, cross-site scripting scenarios, the mishandling of web browser cookies, and an inconsistent user interface issue that could lead to address bar spoofing.

According to a US-CERT notification, remote attacker can exploit some of these vulnerabilities "to take control of an affected system."

Bradley Barth

As director of multimedia content strategy at CyberRisk Alliance, Bradley Barth develops content for online conferences, webcasts, podcasts video/multimedia projects — often serving as moderator or host. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.