{"id":100522,"date":"2024-05-13T23:29:05","date_gmt":"2024-05-14T06:29:05","guid":{"rendered":"https:\/\/www.intego.com\/mac-security-blog\/?p=100522"},"modified":"2024-05-20T11:22:45","modified_gmt":"2024-05-20T18:22:45","slug":"apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/","title":{"rendered":"Apple releases macOS Sonoma 14.5, iOS 17.5, and more, with urgent security updates"},"content":{"rendered":"<p><img loading=\"lazy\" class=\"alignnone wp-image-99266 size-full\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-600x300-1.jpg\" alt=\"\" width=\"600\" height=\"300\" \/><\/p>\n<p>On Monday, May 13, Apple released operating system updates for all of its products. The updates add some minor new features, address some bugs, and more importantly, fix some critical security vulnerabilities\u2014one of which has been disclosed publicly.<\/p>\n<p>Let&#8217;s explore everything you should know about what Apple changed in these updates.<\/p>\n<p><em>In this article:<\/em><\/p>\n<ul>\n<li><a href=\"#cve-2024-27804\">The tale of CVE-2024-27804: possible ACE, with a PoC<\/a><\/li>\n<li><a href=\"#sonoma\">macOS Sonoma 14.5<\/a><\/li>\n<li><a href=\"#vent\">macOS Ventura 13.6.7<\/a><\/li>\n<li><a href=\"#mont\">macOS Monterey 12.7.5<\/a><\/li>\n<li><a href=\"#saf\">Safari 17.5 for macOS Ventura and Monterey<\/a><\/li>\n<li><a href=\"#17\">iOS 17.5 and iPadOS 17.5<\/a><\/li>\n<li><a href=\"#16\">iOS 16.7.8 and iPadOS 16.7.8<\/a><\/li>\n<li><a href=\"#wat\">watchOS 10.5<\/a><\/li>\n<li><a href=\"#tv\">tvOS 17.5<\/a><\/li>\n<li><a href=\"#notpatched\">What Apple didn&#8217;t patch<\/a><\/li>\n<li><a href=\"#howinstall\">How to install Apple security updates<\/a><\/li>\n<li><a href=\"#learnmore\">How can I learn more?<\/a><a name=\"cve-2024-27804\"><\/a><\/li>\n<\/ul>\n<h3>The tale of CVE-2024-27804: possible ACE, with a PoC<\/h3>\n<p>First, let&#8217;s briefly address some drama surrounding a major vulnerability that Apple fixed for all of the current versions of its operating systems\u2014macOS Sonoma 14.5, iOS 17.5, iPadOS 17.5, watchOS 10.5, and tvOS 17.5\u2014with the notable exception of visionOS, which was mysteriously absent from this patch cycle.<\/p>\n<p>Meysam Firouzi (@R00tkitSMM) reported CVE-2024-27804 to Apple. In the release notes for the above mentioned patches, Apple <a href=\"https:\/\/web.archive.org\/web\/20240513184148\/https:\/\/support.apple.com\/en-us\/HT214106\" target=\"_blank\" rel=\"noopener\">originally said<\/a> that exploiting this bug could allow an app &#8220;to execute arbitrary code with kernel privileges.&#8221; Arbitrary code execution (<strong>ACE<\/strong>)\u2014especially with kernel privileges\u2014indicates a major vulnerability.<\/p>\n<p>Apple initially refused to pay Firouzi a bug bounty, claiming that it was out of scope. The next day, Firouzi released proof-of-concept (<strong>PoC<\/strong>) code to the public\u2014meaning anyone, good guy or bad guy, can now access code that may be used to exploit the vulnerability.<\/p>\n<blockquote class=\"twitter-tweet\" data-width=\"500\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">POC for CVE-2024-27804<br \/>Wanted to share it after finishing a blogpost. but decided to share it. <a href=\"https:\/\/t.co\/fkBcseokRz\">https:\/\/t.co\/fkBcseokRz<\/a> <a href=\"https:\/\/t.co\/gEuzUMoTp3\">https:\/\/t.co\/gEuzUMoTp3<\/a><\/p>\n<p>&mdash; Meysam (@R00tkitSMM) <a href=\"https:\/\/twitter.com\/R00tkitSMM\/status\/1790391961737711697?ref_src=twsrc%5Etfw\">May 14, 2024<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Apple later reclassified the vulnerability as allowing an app to cause &#8220;unexpected system termination,&#8221; and <a href=\"https:\/\/x.com\/R00tkitSMM\/status\/1790781775905423384\">decided<\/a> to award Firouzi a $1,000 bounty. The company updated all of its security release notes accordingly.<\/p>\n<p>It&#8217;s unclear whether Apple&#8217;s initial description of the bug was correct or not. If it&#8217;s true that exploiting the vulnerability could lead to arbitrary code execution with kernel privileges, at least under certain circumstances, then it&#8217;s a major vulnerability. And now that a PoC is available in the wild, <strong>it&#8217;s important for everyone who uses Apple operating systems to update quickly.<\/strong> Note that <strong>Apple Vision Pro may remain vulnerable<\/strong>, so watch for possible updates in the coming weeks.<\/p>\n<p>Without further ado, here&#8217;s more about each of this week&#8217;s updates.<a name=\"sonoma\"><\/a><\/p>\n<h3>macOS Sonoma 14.5<\/h3>\n<p><strong>Available for: <\/strong>All supported Macs capable of running macOS Sonoma<\/p>\n<p><strong>Update information:<\/strong><\/p>\n<ul>\n<li>\n<p class=\"gb-paragraph\">macOS Sonoma 14.5 includes the following improvements and bug fixes:<\/p>\n<ul class=\"list gb-list\">\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Quartiles is a new and original daily word game that is now available in Apple News+<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Scoreboard in News+ Puzzles gives you access to new player data for Crossword, Mini Crossword, and Quartiles, including stats and streaks<\/p>\n<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p><strong>Enterprise:<\/strong><\/p>\n<ul>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">MDM can now enforce a specific beta version at Setup Assistant when using Automated Device Enrollment.<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">The Lock Screen now has a Switch User option when configured to show name and password and network accounts are available.<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Reliability of declarative software update notifications is improved.<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Resolved an issue where configured printers may be removed after updating.<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Apps no longer incorrectly prompt for Desktop and Documents access when both iCloud Drive and Microsoft OneDrive are enabled.<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">The uptime command no longer reports inaccurate information.<\/p>\n<\/li>\n<\/ul>\n<p><strong>Security-related fixes and updates:<\/strong><br \/>\nIn this update, Apple addressed at least 22 vulnerabilities with CVE (Common Vulnerabilities and Exposures) numbers assigned to them. Here are a handful of notable ones:<\/p>\n<blockquote><p><strong>AppleAVD<br \/>\n<\/strong>Impact: An app may be able to execute arbitrary code with kernel privileges*<br \/>\nDescription: The issue was addressed with improved memory handling.<br \/>\nCVE-2024-27804: Meysam Firouzi (@R00tkitSMM)<br \/>\n*Apple later updated this to &#8220;An app may be able to cause unexpected system termination&#8221;<\/p>\n<p>&nbsp;<\/p>\n<p><strong>AppleMobileFileIntegrity<br \/>\n<\/strong>Impact: A local attacker may gain access to Keychain items<br \/>\nDescription: A downgrade issue was addressed with additional code-signing restrictions.<br \/>\nCVE-2024-27837: Mickey Jin (@patch1t) and ajajfxhj<\/p>\n<p>&nbsp;<\/p>\n<p>Impact: An attacker may be able to access user data<br \/>\nDescription: A logic issue was addressed with improved checks.<br \/>\nCVE-2024-27816: Mickey Jin (@patch1t)<\/p>\n<p>&nbsp;<\/p>\n<p>Impact: An app may be able to bypass certain Privacy preferences<br \/>\nDescription: A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.<br \/>\nCVE-2024-27825: Kirin (@Pwnrin)<\/p>\n<p>&nbsp;<\/p>\n<p><strong>Maps<br \/>\n<\/strong>Impact: An app may be able to read sensitive location information<br \/>\nDescription: A path handling issue was addressed with improved validation.<br \/>\nCVE-2024-27810: LFY@secsys of Fudan University<\/p>\n<p>&nbsp;<\/p>\n<p><strong>PackageKit<br \/>\n<\/strong>Impact: An app may be able to gain root privileges<br \/>\nDescription: A logic issue was addressed with improved restrictions.<br \/>\nCVE-2024-27822: Scott Johnson, Mykola Grymalyuk of RIPEDA Consulting, Jordy Witteman, and Carlos Polop<br \/>\n(Congrats to <a href=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-keep-older-macs-secure-a-geeky-approach\/\">OpenCore Legacy Patcher<\/a> developer <a class=\"css-175oi2r r-1wbh5a2 r-dnmrzs r-1ny4l3l r-1loqt21\" role=\"link\" href=\"https:\/\/twitter.com\/khronokernel\"><span class=\"css-1jxf684 r-dnmrzs r-1udh08x r-3s2u2q r-bcqeeo r-1ttztb7 r-qvutc0 r-poiln3\"><span class=\"css-1jxf684 r-bcqeeo r-1ttztb7 r-qvutc0 r-poiln3\">Mykola Grymalyuk<\/span><\/span><\/a> on your first Apple CVE!)<\/p>\n<p>&nbsp;<\/p>\n<p><strong>Shortcuts<br \/>\n<\/strong>Impact: A shortcut may output sensitive user data without consent<br \/>\nDescription: A path handling issue was addressed with improved validation.<br \/>\nCVE-2024-27821: Kirin (@Pwnrin), zbleet, and Csaba Fitzl (@theevilbit) of Kandji<\/p>\n<p>&nbsp;<\/p>\n<p><strong>Sync Services<br \/>\n<\/strong>Impact: An app may be able to bypass Privacy preferences<br \/>\nDescription: This issue was addressed with improved checks<br \/>\nCVE-2024-27847: Mickey Jin (@patch1t)<\/p><\/blockquote>\n<p>For the full list of security patches included in macOS Sonoma 14.5, <a href=\"https:\/\/support.apple.com\/en-us\/HT214106\" target=\"_blank\" rel=\"noopener\">have a look here<\/a>.<\/p>\n<p>You can get this update by going to <strong>System Settings<\/strong> &gt; <strong>Software Update<\/strong>, where compatible Macs running macOS Mojave or newer will see the Sonoma update appear. If your Mac is running macOS High Sierra or older, look for macOS Sonoma in the App Store and download it from there.<\/p>\n<p><span style=\"color: #ff0000;\"><strong>NOTE:<\/strong><\/span> Some users of older, unsupported Macs may have <a href=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-keep-older-macs-secure-a-geeky-approach\/\">upgraded their Macs using an unofficial method<\/a>. OpenCore Legacy Patcher users <a href=\"https:\/\/github.com\/dortania\/OpenCore-Legacy-Patcher\/releases\" target=\"_blank\" rel=\"noopener\">must update to the latest version<\/a> before attempting to update to macOS Sonoma 14.5.<a name=\"vent\"><\/a><\/p>\n<h3>macOS Ventura 13.6.7<\/h3>\n<p><strong>Available for: <\/strong>All supported Macs currently running macOS Ventura<\/p>\n<p><strong>Security-related fixes and updates:<\/strong><br \/>\nIn this update, Apple apparently addressed only three vulnerabilities\u00a0with CVEs assigned.<\/p>\n<p>For the small list of security patches included in Ventura 13.6.7, <a href=\"https:\/\/support.apple.com\/en-us\/HT214107\" target=\"_blank\" rel=\"noopener\">have a look here<\/a>.<\/p>\n<p>You can get this update by going to <strong>System Settings<\/strong> &gt; <strong>Software Update<\/strong>.<a name=\"mont\"><\/a><\/p>\n<h3>macOS Monterey 12.7.5<\/h3>\n<p><strong>Available for: <\/strong>All supported Macs currently running macOS Monterey<\/p>\n<p><strong>Security-related fixes and updates:<\/strong><br \/>\nIn this update, Apple apparently addressed merely two vulnerabilities with CVEs assigned.<\/p>\n<p>For the even smaller list of security patches included in Monterey 12.7.5, <a href=\"https:\/\/support.apple.com\/en-us\/HT214105\" target=\"_blank\" rel=\"noopener\">have a look here<\/a>.<\/p>\n<p>You can get this update by going to <strong>System Preferences<\/strong> &gt; <strong>Software Update<\/strong>.<a name=\"saf\"><\/a><\/p>\n<h3>Safari 17.5 for macOS Ventura and Monterey<\/h3>\n<p><strong>Available for: <\/strong>macOS Monterey and macOS Ventura<\/p>\n<p>This update addresses one WebKit issue, which was also addressed in the macOS Sonoma 14.5 update. Users of both macOS Monterey and Ventura will receive Safari 17.5 as a separate update that can be installed either alongside the macOS updates or after they have been installed.<\/p>\n<p>The details of this fix <a href=\"https:\/\/support.apple.com\/en-us\/HT214103\" target=\"_blank\" rel=\"noopener\">can be seen here<\/a>, and the update is available in <strong>System Preferences<\/strong> &gt;<strong> Software Update<\/strong> on your Mac.<a name=\"17\"><\/a><\/p>\n<h3>iOS 17.5 and iPadOS 17.5<\/h3>\n<p><strong>Available for:\u00a0<\/strong>Available for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later<\/p>\n<p><strong>Update Information:<\/strong><\/p>\n<p class=\"gb-paragraph\">This update introduces a new Pride Radiance wallpaper for the Lock Screen, Apple News enhancements, and other features, bug fixes, and security updates for your iPhone.<\/p>\n<p class=\"gb-paragraph\">Apple News<\/p>\n<ul class=\"list gb-list\">\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Offline mode in Apple News+ gives you access to the Today feed and News+ tab, even when you don\u2019t have an internet connection<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Quartiles is a new and original daily word game that is now available in Apple News+<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Scoreboard in News+ Puzzles gives you access to new player data for Crossword, Mini Crossword and Quartiles, including stats and streaks<\/p>\n<\/li>\n<\/ul>\n<p class=\"gb-paragraph\">Tracking Notifications<\/p>\n<ul class=\"list gb-list\">\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Cross-Platform Tracking Detection delivers notifications to users if a compatible Bluetooth tracker they do not own is moving with them, regardless of what operating system the device is paired with<\/p>\n<\/li>\n<\/ul>\n<p><strong>Enterprise:<\/strong><\/p>\n<ul class=\"list gb-list\">\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">A new MDM restriction is available to prevent installing apps through Web Distribution.<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">The Photos app properly enforces restrictions against printing, setting wallpaper, and enabling iCloud Photos.<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Improves the stability of updating apps while in Single App Mode.<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Per App VPN connects reliably on first use.<\/p>\n<\/li>\n<li class=\"gb-list_item\">\n<p class=\"gb-paragraph\">Messages stay associated with the correct phone number on Dual SIM devices.<\/p>\n<\/li>\n<\/ul>\n<p><strong>Security-related fixes and updates:<\/strong><\/p>\n<p>This update addresses 15 issues. Here are a few that are unique to iOS and iPadOS:<\/p>\n<blockquote><p><strong>MarketplaceKit<br \/>\n<\/strong>Impact: A maliciously crafted webpage may be able to distribute a script that tracks users on other webpages<br \/>\nDescription: A privacy issue was addressed with improved client ID handling for alternative app marketplaces.<br \/>\nCVE-2024-27852: Talal Haj Bakry and Tommy Mysk of Mysk Inc. (@mysk_co)<\/p>\n<p>&nbsp;<\/p>\n<p><strong>Notes<br \/>\n<\/strong>Impact: An attacker with physical access to an iOS device may be able to access notes from the lock screen<br \/>\nDescription: This issue was addressed through improved state management.<br \/>\nCVE-2024-27835: Andr.Ess<\/p>\n<p>&nbsp;<\/p>\n<p><strong>Screenshots<br \/>\n<\/strong>Impact: An attacker with physical access may be able to share items from the lock screen<br \/>\nDescription: A permissions issue was addressed with improved validation.<br \/>\nCVE-2024-27803: an anonymous researcher<\/p>\n<p>&nbsp;<\/p>\n<p><strong>Voice Control<br \/>\n<\/strong>Impact: An attacker may be able to elevate privileges<br \/>\nDescription: The issue was addressed with improved checks.<br \/>\nCVE-2024-27796: ajajfxhj<\/p><\/blockquote>\n<p>The full list of security issues that were addressed can be found <a href=\"https:\/\/support.apple.com\/en-us\/HT214101\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>. To get your hands on this latest update, connect your device to your Mac and follow the update prompts. You can also download these updates over the air by going to <strong>Settings<\/strong> &gt; <strong>General<\/strong> &gt; <strong>Software Update<\/strong> on your device.<a name=\"16\"><\/a><\/p>\n<h3>iOS 16.7.8 and iPadOS 16.7.8<\/h3>\n<p><strong>Available for:<\/strong><br \/>\niPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generation<\/p>\n<p><strong>Security-related fixes and updates:<\/strong><br \/>\nOnly 2 vulnerabilities were addressed in this update, including the RTKit vulnerability fix that other OS versions received <a href=\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-4-introduces-68-security-fixes-but-also-some-new-bugs\/\" target=\"_blank\" rel=\"noopener\">back in March<\/a>.<\/p>\n<p>The details of the two security issues that were addressed can be found <a href=\"https:\/\/support.apple.com\/en-us\/HT214100\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>. To get this latest update, connect your device to your Mac and follow the update prompts. You can also download these updates over the air by going to <strong>Settings<\/strong> &gt; <strong>General<\/strong> &gt; <strong>Software Update<\/strong> on your device.<a name=\"wat\"><\/a><\/p>\n<h3>watchOS 10.5<\/h3>\n<p><strong>Available for: <\/strong>Apple Watch Series 4 and later<\/p>\n<p><strong>Update information:<br \/>\n<\/strong>watchOS 10.5 includes new features, improvements and bug fixes, including a new Pride Radiance watch face to honor the LGBTQ+ community and culture.<\/p>\n<p><strong>Security-related fixes and updates:<br \/>\n<\/strong>Apple addressed at least 6 vulnerabilities with CVEs in this update.<\/p>\n<p>The full list of security issues that were addressed can be found <a href=\"https:\/\/support.apple.com\/en-us\/HT214104\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>. To install this update, make sure your iPhone is up to date first, both your phone and watch are connected to the same Wi-Fi network, and the watch has at least a 50% charge. Then open the Watch app on your phone and tap <strong>General<\/strong> &gt; <strong>Software Update<\/strong>.<a name=\"tv\"><\/a><\/p>\n<h3>tvOS 17.5<\/h3>\n<p><strong>Available for: <\/strong>Apple TV HD and Apple TV 4K (all models)<\/p>\n<p><strong>Security-related fixes and updates:<\/strong><br \/>\nApple addressed at least 5 vulnerabilities with CVEs in this update, mostly the same as in the watchOS 10.5 update.<\/p>\n<p>The full list of security issues that were addressed can be found <a href=\"https:\/\/support.apple.com\/en-us\/HT214102\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>. To install this update, go to <strong>Settings &gt; System &gt; Software Updates<\/strong> on your Apple TV.<a name=\"notpatched\"><\/a><\/p>\n<h3>What Apple didn&#8217;t patch<\/h3>\n<p>Though some of the following shouldn&#8217;t come as a big surprise, Apple did not release security updates for any of the following operating systems this month:<\/p>\n<ul>\n<li><strong>visionOS<\/strong> \u2014 no security updates since March 2024<\/li>\n<li><strong>iOS 15 and iPadOS 15<\/strong> \u2014 no security updates since January 2024<\/li>\n<li><strong>iOS 12<\/strong> \u2014 no updates since January 2023<\/li>\n<li><strong>watchOS 9<\/strong> \u2014 no updates since September 2023<\/li>\n<li><strong>watchOS 8<\/strong> \u2014 no updates since June 2023<\/li>\n<\/ul>\n<p>The only real surprise in that list is visionOS. Presumably, <strong>visionOS 1.1.2 likely has the same kernel, WebKit, and other vulnerabilities<\/strong> as Apple&#8217;s operating systems. So why didn&#8217;t Apple patch it?<\/p>\n<p>If you have an older device that cannot be upgraded to the latest version of iOS or iPadOS (17.x), or watchOS (10.x), you should strongly consider purchasing a newer model. The latest models of iPhone, iPad, and Apple Watch can run the newest operating systems, and can thus get all available security updates.<\/p>\n<p>Meanwhile, macOS Sonoma still includes a <a href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-neglects-to-patch-multiple-critical-vulnerabilities-in-macos\/\">two-year-old version of LibreSSL that appears to remain unpatched<\/a>, and it appears that other vulnerabilities in open-source components remain unpatched as well (we&#8217;ll cover this more in a follow-up article). Nevertheless, we recommend upgrading to macOS Sonoma to address a plethora of other vulnerabilities that Apple has not fixed (and likely never will) for previous macOS versions. If your Mac is not on <a href=\"https:\/\/www.apple.com\/macos\/sonoma\/#:~:text=macOS%20Sonoma%20is%20compatible%20with%20these%20devices\" target=\"_blank\" rel=\"noopener\">Apple&#8217;s compatibility list for macOS Sonoma<\/a>, you should consider buying a new Mac; <a href=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-choose-the-right-mac-for-your-use-case\/\">learn which one is ideal for you<\/a>. Or, if you like living on the edge, you can <a href=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-keep-older-macs-secure-a-geeky-approach\/\">upgrade your old Mac to macOS Sonoma without Apple&#8217;s support or blessing<\/a>.<a name=\"howinstall\"><\/a><\/p>\n<h3>How to install Apple security updates<\/h3>\n<h4><strong>For macOS updates<\/strong><\/h4>\n<p><strong>If you haven&#8217;t yet upgraded to macOS Sonoma<\/strong>, be sure to first update your critical software. For example, run Intego&#8217;s NetUpdate utility and install all available updates, and then check for updates for all other software that you use regularly. Next, check for macOS updates by going to System Settings &gt; General &gt; Software Update.<\/p>\n<p>If you have any trouble getting the macOS update to show up, either press \u2318R at the Software Update screen, or type in the Terminal <code>softwareupdate -l<\/code> (that\u2019s a lowercase L) and press Return\/Enter, then check System Settings &gt; General &gt; Software Update again.<\/p>\n<p>Macs running macOS Big Sur or Monterey can get these updates (or upgrade to macOS Sonoma) via System Preferences &gt; Software Update. If you have an iMac Pro or a MacBook Pro (2018) that&#8217;s still running macOS High Sierra, <a href=\"https:\/\/apps.apple.com\/us\/app\/macos-sonoma\/id6450717509\" target=\"_blank\" rel=\"noopener\">look for macOS Sonoma in the Mac App Store<\/a> and download it from there.<\/p>\n<p>Note that <strong>only the latest macOS version (currently, that&#8217;s macOS Sonoma) is ever fully patched<\/strong>; older macOS versions only get a subsection of those patches and remain vulnerable. Therefore, staying on the latest macOS version is critically important for maintaining your security and privacy. For more information, see our article, &#8220;<a href=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-mac-become-unsafe-to-use\/\">When does an old Mac become unsafe to use?<\/a>&#8221;<\/p>\n<p>&nbsp;<\/p>\n<h4><strong>For other Apple OS updates<\/strong><\/h4>\n<p>Users of <strong>iPhone or iPad<\/strong> can open the Settings app and choose General &gt; Software Update to update iOS or iPadOS on their devices. (This is called an &#8220;over the air&#8221; or OTA update.) Alternatively, you can connect your device to your Mac, click on the device name in a Finder window sidebar, and check for updates there; or, if you use a Windows PC, you can use the <a href=\"https:\/\/apps.microsoft.com\/detail\/9np83lwlpz9k?hl=en-us&amp;gl=US\" target=\"_blank\" rel=\"noopener\">Apple Devices app<\/a>.<\/p>\n<p>To update <strong>watchOS on your Apple Watch<\/strong>, the process is a bit more complicated. First, update your iPhone to the latest operating system it can support (ideally the latest version of iOS 17). Next, ensure that both your iPhone and Apple Watch are on the same Wi-Fi network. Your Apple Watch also needs to have at least a 50% charge. Then open the Watch app on your iPhone and tap General &gt; Software Update.<\/p>\n<p>To update <strong>tvOS on your Apple TV<\/strong>, open the Settings app and choose System &gt; Software Updates.<\/p>\n<p>HomePod Software should update automatically. However, if you would like to update your HomePod or HomePod mini&#8217;s operating system manually, you can go into the <strong>Home<\/strong> app on your iPhone or iPad, then tap the\u00a0<strong>House icon<\/strong> &gt; <strong>Home Settings<\/strong> &gt;<strong> Software Update<\/strong> &gt; temporarily disable (toggle off) <strong>Install Updates Automatically<\/strong> &gt; then tap <strong>Install<\/strong>. After updating, remember to <strong>re-enable the Install Updates Automatically<\/strong> setting.<\/p>\n<p>&nbsp;<\/p>\n<h4><strong>It&#8217;s wise to back up before updating<\/strong><\/h4>\n<p>Whenever you&#8217;re preparing to update macOS, iOS, or iPadOS, it&#8217;s a good idea to always <strong>back up your data<\/strong> before installing any updates. This gives you a restore point if something does not go as planned. See our related article on <a href=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-verify-your-backups-are-working-properly\/\">how to check your macOS backups to ensure they work correctly<\/a>.<\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"tsYHm0d2VG\"><p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-verify-your-backups-are-working-properly\/\">How to Verify Your Backups are Working Properly<\/a><\/p><\/blockquote>\n<p><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" title=\"&#8220;How to Verify Your Backups are Working Properly&#8221; &#8212; The Mac Security Blog\" src=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-verify-your-backups-are-working-properly\/embed\/#?secret=tsYHm0d2VG\" data-secret=\"tsYHm0d2VG\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<p>See also our article on <a href=\"https:\/\/www.intego.com\/mac-security-blog\/should-you-back-up-your-ios-device-to-icloud-or-itunes\/\">how to back up your iPhone or iPad to iCloud and to your Mac<\/a>.<\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"D78UEwtpoN\"><p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/should-you-back-up-your-ios-device-to-icloud-or-itunes\/\">Should you back up your iPhone to iCloud or your Mac? Here&#8217;s how to do both<\/a><\/p><\/blockquote>\n<p><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" title=\"&#8220;Should you back up your iPhone to iCloud or your Mac? Here&#8217;s how to do both&#8221; &#8212; The Mac Security Blog\" src=\"https:\/\/www.intego.com\/mac-security-blog\/should-you-back-up-your-ios-device-to-icloud-or-itunes\/embed\/#?secret=D78UEwtpoN\" data-secret=\"D78UEwtpoN\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<p><a name=\"learnmore\"><\/a><\/p>\n<h3 id=\"exploremore\">How can I learn more?<\/h3>\n<p>We discussed this week&#8217;s patches on <a href=\"https:\/\/www.intego.com\/mac-security-blog\/app-store-fraud-apples-crush-ad-and-gpt-4o-intego-mac-podcast-episode-344\/\">episode 344<\/a> of the Intego Mac Podcast.<\/p>\n<p><iframe style=\"width: 100%; max-width: 660px; overflow: hidden; border-radius: 10px;\" src=\"https:\/\/embed.podcasts.apple.com\/us\/podcast\/episode-344-app-store-fraud-apples-crush-ad-and-gpt-4o\/id1293834627?i=1000655772133\" height=\"175\" frameborder=\"0\" sandbox=\"allow-forms allow-popups allow-same-origin allow-scripts allow-storage-access-by-user-activation allow-top-navigation-by-user-activation\"><\/iframe><\/p>\n<p>Each week on the <a href=\"https:\/\/podcast.intego.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Intego Mac Podcast<\/strong><\/a>, Intego&#8217;s Mac security experts discuss the latest Apple news, security, and privacy stories, and offer practical advice on getting the most out of your Apple devices. Be sure to <a href=\"https:\/\/podcasts.apple.com\/us\/podcast\/intego-mac-podcast\/id1293834627\" rel=\"noopener\"><strong>follow the podcast<\/strong><\/a> to make sure you don\u2019t miss any episodes.<\/p>\n<p>You can also subscribe to our <a href=\"https:\/\/www.intego.com\/mac-security-blog\/mac-security-newsletter\/\"><strong>e-mail newsletter<\/strong><\/a> and keep an eye here on <a href=\"https:\/\/www.intego.com\/mac-security-blog\"><strong>The Mac Security Blog<\/strong><\/a> for the latest Apple security and privacy news. And don&#8217;t forget to follow Intego on your favorite social media channels: <a href=\"https:\/\/twitter.com\/IntegoSecurity\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-radius: 8px;\" title=\"Follow Intego on \ud835\udd4f\/Twitter\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2024\/03\/X-Twitter-logo-icon-225.gif\" alt=\"Follow Intego on X\/Twitter\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.facebook.com\/Intego\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-radius: 8px;\" title=\"Follow Intego on Facebook\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2024\/03\/Facebook-logo-icon-225.gif\" alt=\"Follow Intego on Facebook\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.youtube.com\/user\/IntegoVideo?sub_confirmation=1\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-radius: 8px;\" title=\"Follow Intego on YouTube\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2024\/03\/YouTube-logo-icon-225.png\" alt=\"Follow Intego on YouTube\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.pinterest.com\/intego\/\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-radius: 8px;\" title=\"Follow Intego on Pinterest\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2024\/03\/Pinterest-logo-icon-225.png\" alt=\"Follow Intego on Pinterest\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.linkedin.com\/company\/intego\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-radius: 8px;\" title=\"Follow Intego on LinkedIn\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2024\/03\/LinkedIn-logo-icon-225.gif\" alt=\"Follow Intego on LinkedIn\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.instagram.com\/intego_security\/\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-radius: 8px;\" title=\"Follow Intego on Instagram\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2024\/03\/Instagram-logo-icon-225.gif\" alt=\"Follow Intego on Instagram\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/podcasts.apple.com\/us\/podcast\/intego-mac-podcast\/id1293834627\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-radius: 8px;\" title=\"Follow the Intego Mac Podcast on Apple Podcasts\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2017\/10\/ios9-podcasts-app-tile.png\" alt=\"Follow the Intego Mac Podcast on Apple Podcasts\" width=\"16\" \/><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Apple has released security updates for every OS except visionOS, fixing a major vulnerability\u2014the details of which have been disclosed publicly. Install updates now to stay protected on your Mac, iPhone, iPad, Apple Watch, and Apple TV.<\/p>\n","protected":false},"author":79,"featured_media":99268,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[13],"tags":[24,69,4645,4684,4734,4644,4685,4735,4618,4686,4643,589,115,201,4583,4688],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v17.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<meta name=\"description\" content=\"Apple has released security updates for every OS except visionOS, fixing a major vulnerability\u2014the details of which have been disclosed publicly. Install updates now to stay protected on your Mac, iPhone, iPad, Apple Watch, and Apple TV.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Apple releases macOS Sonoma 14.5, iOS 17.5, and more, with urgent security updates - The Mac Security Blog\" \/>\n<meta property=\"og:description\" content=\"Apple has released security updates for every OS except visionOS, fixing a major vulnerability\u2014the details of which have been disclosed publicly. Install updates now to stay protected on your Mac, iPhone, iPad, Apple Watch, and Apple TV.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/\" \/>\n<meta property=\"og:site_name\" content=\"The Mac Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2024-05-14T06:29:05+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-05-20T18:22:45+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"400\" \/>\n\t<meta property=\"og:image:height\" content=\"260\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jay Vrijenhoek\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"12 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\",\"name\":\"Intego\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"sameAs\":[],\"logo\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"width\":875,\"height\":875,\"caption\":\"Intego\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"name\":\"The Mac Security Blog\",\"description\":\"Keep Macs safe from the dangers of the Internet\",\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#primaryimage\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg\",\"width\":400,\"height\":260,\"caption\":\"Apple software update red critical urgent actively exploited zero-day vulnerability with subtle this is fine meme dog fire background\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#webpage\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/\",\"name\":\"Apple releases macOS Sonoma 14.5, iOS 17.5, and more, with urgent security updates - The Mac Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#primaryimage\"},\"datePublished\":\"2024-05-14T06:29:05+00:00\",\"dateModified\":\"2024-05-20T18:22:45+00:00\",\"description\":\"Apple has released security updates for every OS except visionOS, fixing a major vulnerability\\u2014the details of which have been disclosed publicly. Install updates now to stay protected on your Mac, iPhone, iPad, Apple Watch, and Apple TV.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.intego.com\/mac-security-blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Apple releases macOS Sonoma 14.5, iOS 17.5, and more, with urgent security updates\"}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#webpage\"},\"author\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/0106660ab83668e429deecc051dfa8c0\"},\"headline\":\"Apple releases macOS Sonoma 14.5, iOS 17.5, and more, with urgent security updates\",\"datePublished\":\"2024-05-14T06:29:05+00:00\",\"dateModified\":\"2024-05-20T18:22:45+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#webpage\"},\"wordCount\":2713,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg\",\"keywords\":[\"Apple TV\",\"iOS\",\"iOS 16\",\"iOS 17\",\"iOS 17.5\",\"iPadOS 16\",\"iPadOS 17\",\"iPadOS 17.5\",\"macOS Monterey\",\"macOS Sonoma\",\"macOS Ventura\",\"Proof of Concept (PoC)\",\"Safari\",\"Security Updates\",\"watchOS\",\"watchOS 10\"],\"articleSection\":[\"Security &amp; Privacy\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#respond\"]}]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/0106660ab83668e429deecc051dfa8c0\",\"name\":\"Jay Vrijenhoek\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#personlogo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/8f43effd03d0bb31acff4b88613f0d4a?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/8f43effd03d0bb31acff4b88613f0d4a?s=96&d=mm&r=g\",\"caption\":\"Jay Vrijenhoek\"},\"description\":\"Jay Vrijenhoek is an IT consultant with a passion for Mac security research.\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/author\/jay-vrijenhoek\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"description":"Apple has released security updates for every OS except visionOS, fixing a major vulnerability\u2014the details of which have been disclosed publicly. Install updates now to stay protected on your Mac, iPhone, iPad, Apple Watch, and Apple TV.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/","og_locale":"en_US","og_type":"article","og_title":"Apple releases macOS Sonoma 14.5, iOS 17.5, and more, with urgent security updates - The Mac Security Blog","og_description":"Apple has released security updates for every OS except visionOS, fixing a major vulnerability\u2014the details of which have been disclosed publicly. Install updates now to stay protected on your Mac, iPhone, iPad, Apple Watch, and Apple TV.","og_url":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/","og_site_name":"The Mac Security Blog","article_published_time":"2024-05-14T06:29:05+00:00","article_modified_time":"2024-05-20T18:22:45+00:00","og_image":[{"width":400,"height":260,"url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_misc":{"Written by":"Jay Vrijenhoek","Est. reading time":"12 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Organization","@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization","name":"Intego","url":"https:\/\/www.intego.com\/mac-security-blog\/","sameAs":[],"logo":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","width":875,"height":875,"caption":"Intego"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo"}},{"@type":"WebSite","@id":"https:\/\/www.intego.com\/mac-security-blog\/#website","url":"https:\/\/www.intego.com\/mac-security-blog\/","name":"The Mac Security Blog","description":"Keep Macs safe from the dangers of the Internet","publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#primaryimage","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","width":400,"height":260,"caption":"Apple software update red critical urgent actively exploited zero-day vulnerability with subtle this is fine meme dog fire background"},{"@type":"WebPage","@id":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#webpage","url":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/","name":"Apple releases macOS Sonoma 14.5, iOS 17.5, and more, with urgent security updates - The Mac Security Blog","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#primaryimage"},"datePublished":"2024-05-14T06:29:05+00:00","dateModified":"2024-05-20T18:22:45+00:00","description":"Apple has released security updates for every OS except visionOS, fixing a major vulnerability\u2014the details of which have been disclosed publicly. Install updates now to stay protected on your Mac, iPhone, iPad, Apple Watch, and Apple TV.","breadcrumb":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.intego.com\/mac-security-blog\/"},{"@type":"ListItem","position":2,"name":"Apple releases macOS Sonoma 14.5, iOS 17.5, and more, with urgent security updates"}]},{"@type":"Article","@id":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#article","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#webpage"},"author":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/0106660ab83668e429deecc051dfa8c0"},"headline":"Apple releases macOS Sonoma 14.5, iOS 17.5, and more, with urgent security updates","datePublished":"2024-05-14T06:29:05+00:00","dateModified":"2024-05-20T18:22:45+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#webpage"},"wordCount":2713,"commentCount":0,"publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","keywords":["Apple TV","iOS","iOS 16","iOS 17","iOS 17.5","iPadOS 16","iPadOS 17","iPadOS 17.5","macOS Monterey","macOS Sonoma","macOS Ventura","Proof of Concept (PoC)","Safari","Security Updates","watchOS","watchOS 10"],"articleSection":["Security &amp; Privacy"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-5-ios-17-5-and-more-with-security-updates\/#respond"]}]},{"@type":"Person","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/0106660ab83668e429deecc051dfa8c0","name":"Jay Vrijenhoek","image":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#personlogo","inLanguage":"en-US","url":"https:\/\/secure.gravatar.com\/avatar\/8f43effd03d0bb31acff4b88613f0d4a?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/8f43effd03d0bb31acff4b88613f0d4a?s=96&d=mm&r=g","caption":"Jay Vrijenhoek"},"description":"Jay Vrijenhoek is an IT consultant with a passion for Mac security research.","url":"https:\/\/www.intego.com\/mac-security-blog\/author\/jay-vrijenhoek\/"}]}},"jetpack_featured_media_url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","jetpack_publicize_connections":[],"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p4VAYd-q9k","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/100522"}],"collection":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/users\/79"}],"replies":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/comments?post=100522"}],"version-history":[{"count":11,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/100522\/revisions"}],"predecessor-version":[{"id":100639,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/100522\/revisions\/100639"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media\/99268"}],"wp:attachment":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media?parent=100522"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/categories?post=100522"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/tags?post=100522"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}