![\"Apple](\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Apple-Security-Update-Header.png\")
<\/p>\n<\/p>\n
This past week Apple released updates for its\u00a0operating systems and Safari web browser. These updates were made available between December 2 and December 6, but release notes outlining the security content of all updates were delayed until just a day ago (Safari notes still haven’t been published). Following is an overview of Apple’s security\u00a0updates and how to install them.<\/p>\n
A total of 22 security issues were addressed for the current and previous\u00a0two operating system (OS) versions. Apache, Directory Utility, Intel Graphics Driver and Kernel all received some attention. Mail received a fix for an issue that could cause S\/MIME encrypted emails to be sent out unencrypted. Directory Utility and Screen Sharing Server had some work done to it to fix what was left of the root vulnerability<\/a>. The Kernel received the most attention with 8 issues addressed\u00a0that could lead to an application reading restricted memory contents and execute arbitrary code with kernel privileges.<\/p>\n In terms of software security, it has\u00a0not\u00a0been a stellar month for Apple<\/a>, so having some more security issues addressed is definitely a good thing and hopefully more attention will be paid before future updates are released.<\/p>\n Apart from security fixes, some non-security related issues were addressed as well, namely:<\/p>\n And for enterprise users:<\/p>\n For the full list of security issues addressed by these updates, have a look here<\/a>. macOS 10.13.2 High Sierra can be downloaded through the App Store or as a stand-alone installer here<\/a>. A Combo update is now also available which can be downloaded here<\/a>. Security Update 2017-002 macOS Sierra can be downloaded through the App Store or here<\/a>. And Security Update 2017-005 El Capitan can be downloaded from the App Store.<\/p>\n Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation.<\/p>\n iOS 11.2 introduced Apple Pay Cash to send, request, and receive money from friends and family with Apple Pay (US only), and also addressed quite a few non-security related bugs, which you can see listed here<\/a>. In total, 14 security related issues were addressed with 8 for the Kernel, 1 for Mail addressing an S\/MIME encryption issue and 1 for Wi-Fi.<\/p>\n The addressed Wi-Fi issue deserves some attention as this finally fixes\u00a0the KRACK vulnerability<\/a> for all the Apple devices that were left out in the cold almost two months ago. When the KRACK issues were first addressed, it was only made available for iPhone 7 and newer and 2016 iPad Pro and newer. Now the following devices are finally protected as well:<\/p>\n iPhone 6s, iPhone 6s Plus, iPhone 6, iPhone 6 Plus, iPhone SE, iPhone 5s, 12.9-inch iPad Pro 1st generation, iPad Air 2, iPad Air, iPad 5th generation, iPad mini 4, iPad mini 3, iPad mini 2, and iPod touch 6th generation.<\/p>\n The full list of security issues addressed can be found here<\/a>. iOS 11.2 can be downloaded over the air by going to Settings<\/strong> > General<\/strong> > Software Update<\/strong>. You can also connect your iOS device to your Mac and let iTunes do the update for you.<\/p>\n Ten\u00a0security issues were addressed in this update with the biggest focus on Kernel. tvOS also saw an issue relating to KRACK addressed that is now available to all Apple TV (4th generation) users. Previously the KRACK vulnerability was only patched for Apple TV 4K users.<\/p>\n\n
\n
iOS 11.2<\/h3>\n
tvOS 11.2<\/h3>\n