{"id":99347,"date":"2023-11-30T14:57:53","date_gmt":"2023-11-30T22:57:53","guid":{"rendered":"https:\/\/www.intego.com\/mac-security-blog\/?p=99347"},"modified":"2023-12-01T14:38:40","modified_gmt":"2023-12-01T22:38:40","slug":"macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/","title":{"rendered":"macOS Sonoma 14.1.2 patches 2 zero-day vulnerabilities; others remain unpatched"},"content":{"rendered":"<p><img loading=\"lazy\" class=\"alignnone size-full wp-image-99266\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-600x300-1.jpg\" alt=\"\" width=\"600\" height=\"300\" \/><\/p>\n<p>On Thursday, November 30, Apple released a bug-fix update for macOS, iOS, and iPadOS, addressing two &#8220;actively exploited&#8221; security vulnerabilities.<\/p>\n<p>Let&#8217;s take a look at what Apple patched\u2014and what it didn&#8217;t.<\/p>\n<p><em>In this article:<\/em><\/p>\n<ul>\n<li><a href=\"#sonoma\">macOS Sonoma 14.1.2<\/a><\/li>\n<li><a href=\"#saf\">Safari 17.1.2 for macOS Ventura and Monterey<\/a><\/li>\n<li><a href=\"#17\">iOS 17.1.2 and iPadOS 17.1.2<\/a><\/li>\n<li><a href=\"#notpatched\">What Apple didn&#8217;t patch<\/a>\n<ul>\n<li><a href=\"#curl\">macOS Sonoma still has unpatched, critical vulnerabilities<\/a><\/li>\n<li><a href=\"#16\">iOS 16 and iPadOS 16 \u2014 no updates today; confirmed vulnerable<\/a><\/li>\n<li><a href=\"#15\">iOS 15 and iPadOS 15 \u2014 no updates today<\/a><\/li>\n<li><a href=\"#12\">iOS 12 \u2014 no updates since January<\/a><\/li>\n<li><a href=\"#wat\">watchOS 10 \u2014 no updates today<\/a><\/li>\n<li><a href=\"#9\">watchOS 9 \u2014 no updates since September<\/a><\/li>\n<li><a href=\"#8\">watchOS 8 \u2014 no updates since June<\/a><\/li>\n<li><a href=\"#tv\">tvOS 17 \u2014 no updates today<\/a><\/li>\n<\/ul>\n<\/li>\n<li><a href=\"#howinstall\">How to install Apple security updates<\/a><\/li>\n<li><a href=\"#learnmore\">How can I learn more?<\/a><a name=\"sonoma\"><\/a><\/li>\n<\/ul>\n<h3>macOS Sonoma 14.1.2<\/h3>\n<p><strong>Available for:<\/strong><br \/>\nAll supported Macs capable of running macOS Sonoma<\/p>\n<p><strong>Security updates:<\/strong><br \/>\nApple addressed the following two vulnerabilities in this update:<\/p>\n<blockquote><p><strong>WebKit<\/strong><\/p>\n<p>Impact: Processing web content may disclose sensitive information. <span style=\"color: #ff0000;\">Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.<\/span><\/p>\n<p>Description: An out-of-bounds read was addressed with improved input validation.<\/p>\n<p>CVE-2023-42916: Cl\u00e9ment Lecigne of Google&#8217;s Threat Analysis Group<\/p>\n<p>&nbsp;<\/p>\n<p><strong>WebKit<\/strong><\/p>\n<p>Impact: Processing web content may lead to arbitrary code execution. <span style=\"color: #ff0000;\">Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.<\/span><\/p>\n<p>Description: A memory corruption vulnerability was addressed with improved locking.<\/p>\n<p>CVE-2023-42916: Cl\u00e9ment Lecigne of Google&#8217;s Threat Analysis Group<\/p><\/blockquote>\n<p>For the full list of security patches included in macOS Sonoma 14.1.2, <a href=\"https:\/\/support.apple.com\/en-us\/HT214032\" target=\"_blank\" rel=\"noopener\">have a look here<\/a>.<a name=\"saf\"><\/a><\/p>\n<h3>Safari 17.1.2 for macOS Ventura and Monterey<\/h3>\n<p><strong>Available for:<\/strong><br \/>\nmacOS Ventura and macOS Monterey<\/p>\n<p><strong>Security updates:<\/strong><br \/>\nThis update addresses the same two WebKit vulnerabilities that Apple addressed in the macOS Sonoma update. See <a href=\"https:\/\/support.apple.com\/en-us\/HT214033\" target=\"_blank\" rel=\"noopener\">the list of security patches<\/a>.<\/p>\n<p>It&#8217;s important to note that <a href=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-mac-become-unsafe-to-use\/\">Apple does <em>not<\/em> patch all applicable security vulnerabilities for previous operating system versions<\/a>, such as macOS Ventura and Monterey. Both of these Mac operating systems receive far fewer patches than macOS Sonoma. Apple makes no promises about how long it will continue to patch previous OS versions.<a name=\"17\"><\/a><\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"3Fl5kIqklk\"><p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-mac-become-unsafe-to-use\/\">When does an old Mac become unsafe to use?<\/a><\/p><\/blockquote>\n<p><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" title=\"&#8220;When does an old Mac become unsafe to use?&#8221; &#8212; The Mac Security Blog\" src=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-mac-become-unsafe-to-use\/embed\/#?secret=3Fl5kIqklk\" data-secret=\"3Fl5kIqklk\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<h3>iOS 17.1.2 and iPadOS 17.1.2<\/h3>\n<p><strong>Available for:<\/strong><br \/>\niPhone XS and later (including iPhone XR, iPhone 11 and later, and iPhone SE 2nd and 3rd generations), iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later<\/p>\n<p><strong>Security updates:<\/strong><br \/>\nThis update addresses the same two WebKit vulnerabilities that Apple addressed in the macOS Sonoma update. See <a href=\"https:\/\/support.apple.com\/en-us\/HT214031\" target=\"_blank\" rel=\"noopener noreferrer\">the list of security patches<\/a>.<a name=\"notpatched\"><\/a><\/p>\n<h3>What Apple didn&#8217;t patch<\/h3>\n<p><a name=\"curl\"><\/a>Notably, several Apple operating systems that also use WebKit have not been patched yet. Not only that, but macOS Sonoma is still missing a number of major security patches.<\/p>\n<h4><strong>macOS Sonoma still has unpatched, critical vulnerabilities<\/strong><\/h4>\n<p>For more than seven weeks now, <a href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-neglects-to-patch-multiple-critical-vulnerabilities-in-macos\/\">Apple has neglected to bring the command-line utility curl up to its current version<\/a>.<\/p>\n<p>Although curl&#8217;s October 11 update (version 8.4.0) <a href=\"https:\/\/curl.se\/docs\/security.html\" target=\"_blank\" rel=\"noopener\">patched<\/a> a <a href=\"https:\/\/curl.se\/docs\/CVE-2023-38545.html\" target=\"_blank\" rel=\"noopener\">high-severity vulnerability<\/a>, Apple did not include the update with macOS Sonoma 14.1, 14.1.1, or 14.1.2.<\/p>\n<p>Meanwhile, Intego has discovered that <a href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-neglects-to-patch-multiple-critical-vulnerabilities-in-macos\/\">several other critical-severity vulnerabilities<\/a>, <strong>including one that has been actively exploited in the wild<\/strong>, appear to remain unpatched in macOS Sonoma 14.1.2.<\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"VqjlhEhSv2\"><p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-neglects-to-patch-multiple-critical-vulnerabilities-in-macos\/\">Apple neglects to patch multiple critical vulnerabilities in macOS<\/a><\/p><\/blockquote>\n<p><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" title=\"&#8220;Apple neglects to patch multiple critical vulnerabilities in macOS&#8221; &#8212; The Mac Security Blog\" src=\"https:\/\/www.intego.com\/mac-security-blog\/apple-neglects-to-patch-multiple-critical-vulnerabilities-in-macos\/embed\/#?secret=VqjlhEhSv2\" data-secret=\"VqjlhEhSv2\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<p>Intego first discussed the curl update on <a href=\"https:\/\/www.intego.com\/mac-security-blog\/dragonegg-watering-holes-google-passkeys-and-curl-intego-mac-podcast-episode-313\/\">episode 313<\/a> of the Intego Mac Podcast.<\/p>\n<p><iframe loading=\"lazy\" src=\"https:\/\/player.fireside.fm\/v2\/GegHgcrH+31ddcwZ8?theme=dark\" width=\"740\" height=\"200\" frameborder=\"0\" scrolling=\"no\" data-mce-fragment=\"1\"><\/iframe><a name=\"16\"><\/a><\/p>\n<h4><strong>iOS 16 and iPadOS 16 \u2014 no updates today; confirmed vulnerable<\/strong><\/h4>\n<p>Apple specifically mentioned in the iOS 17.1.2 release notes that the two WebKit vulnerabilities addressed in today&#8217;s update have been used against iOS 16 earlier this year. However, Apple did not release a corresponding update today to address those vulnerabilities for iOS 16.<\/p>\n<p>Both the iPhone 8 and iPhone X cannot be upgraded to iOS 17 or later. These phones, and iPads of a similar vintage, presumably remain vulnerable to both of the actively exploited WebKit vulnerabilities as of today. It remains to be seen when\u2014or if\u2014Apple will release further patches for iOS 16 or iPadOS 16 for these devices. Apple&#8217;s most recent update for these operating systems was just over a month ago, on October 25.<\/p>\n<p>It&#8217;s important to note that <a href=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-iphone-become-unsafe-to-use\/\">Apple does <em>not<\/em> patch all applicable security vulnerabilities for previous operating system versions<\/a>, such as iOS 16. Since iOS 17&#8217;s release, iOS 16 has gotten roughly half as many security patches as iOS 17. Apple makes no promises about how long it will continue to patch previous OS versions.<a name=\"15\"><\/a><\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"1evdc14lfS\"><p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-iphone-become-unsafe-to-use\/\">When does an old iPhone become unsafe to use?<\/a><\/p><\/blockquote>\n<p><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" title=\"&#8220;When does an old iPhone become unsafe to use?&#8221; &#8212; The Mac Security Blog\" src=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-iphone-become-unsafe-to-use\/embed\/#?secret=1evdc14lfS\" data-secret=\"1evdc14lfS\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<h4><strong>iOS 15 and iPadOS 15 \u2014 no updates today<\/strong><\/h4>\n<p>Apple did not release any security patches for iOS 15 or iPadOS 15 today, either. As the two-versions-old mobile operating systems, both receive only minimal patches, if any, at this point.<\/p>\n<p>Many devices such as iPhone 6S, iPhone SE (1st generation), iPhone 7, and iPads of a similar vintage, are only able to run version 15 of their respective operating systems. Therefore, they presumably remain vulnerable to both of the actively exploited WebKit vulnerabilities as of today. It remains to be seen when\u2014or if\u2014Apple will release further patches for iOS 15 or iPadOS 15 for these devices. Apple&#8217;s most recent update for these operating systems was just over a month ago, on October 25.<\/p>\n<p>To reiterate, <a href=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-iphone-become-unsafe-to-use\/\">Apple does <em>not<\/em> patch all applicable security vulnerabilities for previous operating system versions<\/a>, such as iOS 15. If your device cannot be upgraded to iOS 17, it&#8217;s best to buy newer hardware.<a name=\"12\"><\/a><\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"1evdc14lfS\"><p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-iphone-become-unsafe-to-use\/\">When does an old iPhone become unsafe to use?<\/a><\/p><\/blockquote>\n<p><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" title=\"&#8220;When does an old iPhone become unsafe to use?&#8221; &#8212; The Mac Security Blog\" src=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-iphone-become-unsafe-to-use\/embed\/#?secret=1evdc14lfS\" data-secret=\"1evdc14lfS\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<h4><strong>iOS 12 \u2014 no updates since January<\/strong><\/h4>\n<p>It has been nearly 10 months since Apple last released a security update for older devices stuck on iOS 12. The most recent, and probably final, security update for iOS 12 was released in January 2023, and it only patched a single vulnerability.<\/p>\n<p>Again, users whose devices are incapable of upgrading to iOS or iPadOS 17 <a href=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-iphone-become-unsafe-to-use\/\">should consider buying newer hardware<\/a> that supports the current, and fully patched, operating systems.<a name=\"wat\"><\/a><\/p>\n<h4><strong>watchOS 10 \u2014 no updates today<\/strong><\/h4>\n<p>Although WebKit vulnerabilities often affect watchOS, Apple did not release any watchOS updates today. It is unclear whether or not the latest two WebKit vulnerabilities affect watchOS.<a name=\"9\"><\/a><\/p>\n<h4><strong>watchOS 9 \u2014 no updates since September<\/strong><\/h4>\n<p>Likewise, there wasn&#8217;t a watchOS 9 update today, either.<\/p>\n<p>It remains to be seen whether Apple will continue patching watchOS 9. Every Apple Watch model that was compatible with watchOS 9 (namely, Series 4 and later) is also compatible with watchOS 10, so there&#8217;s little reason for Apple to patch watchOS 9 anymore.<\/p>\n<p>The most recent watchOS 9 security update was released <a href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-patches-predator-exploited-vulnerabilities-for-ios-ipados-macos-watchos\/\">in September<\/a>. Since then, Apple has released security updates for watchOS 10 <a href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-releases-macos-sonoma-14-1-ios-17-1-and-more-with-security-updates\/\">only once<\/a>, but that update addressed 11 vulnerabilities\u2014at least some of which likely affect watchOS 9 as well.<a name=\"8\"><\/a><\/p>\n<h4><strong>watchOS 8 \u2014 no updates since June<\/strong><\/h4>\n<p>Unsurprisingly, watchOS 8 didn&#8217;t get an update, either. The only Apple Watch model that&#8217;s stuck with watchOS 8 is the Apple Watch Series 3. Apple sold the Series 3 until March 2023\u2014even after the company had seemingly ceased all updates for watchOS 8. Apple did release <a href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-gives-watch-series-3-users-false-sense-of-security-patching-1-vulnerability\/\">a single update, patching a single vulnerability in watchOS 8<\/a>, in June 2023, but this has been the only vulnerability Apple has patched for the OS from July 2022 to present.<\/p>\n<p>All Apple Watch models older than the Series 4 should be considered perpetually vulnerable, and unsafe to use.<a name=\"tv\"><\/a><\/p>\n<h4><strong>tvOS 17 \u2014 no updates today<\/strong><\/h4>\n<p>Although WebKit vulnerabilities often affect tvOS, Apple did not release any tvOS updates today. It is unclear whether or not the latest two WebKit vulnerabilities affect tvOS.<a name=\"howinstall\"><\/a><\/p>\n<h3>How to install Apple security updates<\/h3>\n<p>It is recommended to update as soon as you can.<\/p>\n<p><strong>If you haven&#8217;t yet upgraded to macOS Sonoma<\/strong>, be sure to first update your critical software. For example, run Intego&#8217;s NetUpdate utility and install all available updates, and then check for updates for all other software that you use regularly. Next, check for macOS updates by going to System Settings &gt; General &gt; Software Update.<\/p>\n<p>If you have any trouble getting the macOS update to show up, either press \u2318R at the Software Update screen, or type in the Terminal <code>softwareupdate -l<\/code> (that\u2019s a lowercase L) and press Return\/Enter, then check System Settings &gt; General &gt; Software Update again.<\/p>\n<p>Macs running macOS Big Sur or Monterey can get these updates (or upgrade to macOS Sonoma) via System Preferences &gt; Software Update. If you have an iMac Pro or a MacBook Pro (2018) that&#8217;s still running macOS High Sierra, <a href=\"https:\/\/apps.apple.com\/us\/app\/macos-sonoma\/id6450717509\" target=\"_blank\" rel=\"noopener\">look for macOS Sonoma in the Mac App Store<\/a> and download it from there.<\/p>\n<p>Note that <strong>only the latest macOS version (currently, that&#8217;s macOS Sonoma) is ever fully patched<\/strong>; older macOS versions only get a subsection of those patches and remain vulnerable. Therefore, staying on the latest macOS version is critically important for maintaining your security and privacy. For more information, see our article, &#8220;<a href=\"https:\/\/www.intego.com\/mac-security-blog\/when-does-an-old-mac-become-unsafe-to-use\/\">When does an old Mac become unsafe to use?<\/a>&#8221;<\/p>\n<p>Users of <strong>iPhone or iPad<\/strong> can go to Settings &gt; General &gt; Software Update to update iOS or iPadOS on their devices. (This is called an &#8220;over the air&#8221; or OTA update.) Alternatively, you can connect your device to your Mac, click on the device name in a Finder window sidebar, and check for updates there.<\/p>\n<p>To update <strong>watchOS on your Apple Watch<\/strong>, the process is a bit more complicated. First, update your iPhone to the latest operating system it can support (ideally the latest version of iOS 17). Next, ensure that both your iPhone and Apple Watch are on the same Wi-Fi network. Your Apple Watch also needs to have at least a 50% charge. Then open the Watch app on your iPhone and tap General &gt; Software Update.<\/p>\n<p>Whenever you&#8217;re preparing to update macOS, iOS, or iPadOS, it&#8217;s a good idea to always <strong>back up your data<\/strong> before installing any updates. This gives you a restore point if something does not go as planned. See our related article on <a href=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-verify-your-backups-are-working-properly\/\">how to check your macOS backups to ensure they work correctly<\/a>.<\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"3qGOvu8MCk\"><p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-verify-your-backups-are-working-properly\/\">How to Verify Your Backups are Working Properly<\/a><\/p><\/blockquote>\n<p><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" title=\"&#8220;How to Verify Your Backups are Working Properly&#8221; &#8212; The Mac Security Blog\" src=\"https:\/\/www.intego.com\/mac-security-blog\/how-to-verify-your-backups-are-working-properly\/embed\/#?secret=3qGOvu8MCk\" data-secret=\"3qGOvu8MCk\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<p>See also our article on <a href=\"https:\/\/www.intego.com\/mac-security-blog\/should-you-back-up-your-ios-device-to-icloud-or-itunes\/\">how to back up your iPhone or iPad to iCloud and to your Mac<\/a>.<\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"w3ytxqfxBY\"><p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/should-you-back-up-your-ios-device-to-icloud-or-itunes\/\">Should you back up your iPhone to iCloud or your Mac? Here&#8217;s how to do both<\/a><\/p><\/blockquote>\n<p><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" title=\"&#8220;Should you back up your iPhone to iCloud or your Mac? Here&#8217;s how to do both&#8221; &#8212; The Mac Security Blog\" src=\"https:\/\/www.intego.com\/mac-security-blog\/should-you-back-up-your-ios-device-to-icloud-or-itunes\/embed\/#?secret=w3ytxqfxBY\" data-secret=\"w3ytxqfxBY\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<p><a name=\"learnmore\"><\/a><\/p>\n<h3 id=\"exploremore\">How can I learn more?<\/h3>\n<p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/04\/intego-podcast-artwork-400.jpg\" target=\"_blank\" rel=\"noopener noreferrer\"><img class=\"alignleft\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/04\/intego-podcast-artwork-400.jpg\" alt=\"\" width=\"80\" \/><\/a>Each week on the <a href=\"https:\/\/podcast.intego.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Intego Mac Podcast<\/strong><\/a>, Intego&#8217;s Mac security experts discuss the latest Apple news, security and privacy stories, and offer practical advice on getting the most out of your Apple devices. Be sure to <a href=\"https:\/\/podcasts.apple.com\/us\/podcast\/intego-mac-podcast\/id1293834627\" rel=\"noopener\"><strong>follow the podcast<\/strong><\/a> to make sure you don\u2019t miss any episodes.<\/p>\n<p>You can also subscribe to our <a href=\"https:\/\/www.intego.com\/mac-security-blog\/mac-security-newsletter\/\"><strong>e-mail newsletter<\/strong><\/a> and keep an eye here on <a href=\"https:\/\/www.intego.com\/mac-security-blog\"><strong>The Mac Security Blog<\/strong><\/a> for the latest Apple security and privacy news. And don&#8217;t forget to follow Intego on your favorite social media channels: <a href=\"https:\/\/twitter.com\/IntegoSecurity\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow Intego on Twitter\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/Twitter-logo-icon-64.png\" alt=\"Follow Intego on Twitter\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.facebook.com\/Intego\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow Intego on Facebook\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/Facebook-logo-icon-64.png\" alt=\"Follow Intego on Facebook\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.youtube.com\/user\/IntegoVideo?sub_confirmation=1\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(0, 0, 0, 0.2); border-radius: 8px;\" title=\"Follow Intego on YouTube\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/YouTube-logo-icon-64.png\" alt=\"Follow Intego on YouTube\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.pinterest.com\/intego\/\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(0, 0, 0, 0.2); border-radius: 8px;\" title=\"Follow Intego on Pinterest\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/Pinterest-logo-icon-64.png\" alt=\"Follow Intego on Pinterest\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.linkedin.com\/company\/intego\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow Intego on LinkedIn\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/LinkedIn-logo-icon-64.png\" alt=\"Follow Intego on LinkedIn\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.instagram.com\/intego_security\/\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow Intego on Instagram\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/Instagram-logo-icon-64.png\" alt=\"Follow Intego on Instagram\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/podcasts.apple.com\/us\/podcast\/intego-mac-podcast\/id1293834627\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow the Intego Mac Podcast on Apple Podcasts\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2017\/10\/ios9-podcasts-app-tile.png\" alt=\"Follow the Intego Mac Podcast on Apple Podcasts\" width=\"16\" \/><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>On Thursday, November 30, Apple released a bug-fix update for macOS, iOS, and iPadOS, addressing two &#8220;actively exploited&#8221; security vulnerabilities. Let&#8217;s take a look at what Apple patched\u2014and what it didn&#8217;t. In this article: macOS Sonoma 14.1.2 Safari 17.1.2 for macOS Ventura and Monterey iOS 17.1.2 and iPadOS 17.1.2 What Apple didn&#8217;t patch macOS Sonoma [&hellip;]<\/p>\n","protected":false},"author":14,"featured_media":99268,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[13],"tags":[24,69,4627,4645,4684,4618,4686,4643,115,201,4583,4688],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v17.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<meta name=\"description\" content=\"On Thursday, November 30, Apple released a bug-fix update for macOS, iOS, and iPadOS, addressing two &quot;actively exploited&quot; security vulnerabilities. Let&#039;s\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"macOS Sonoma 14.1.2 patches 2 zero-day vulnerabilities; others remain unpatched - The Mac Security Blog\" \/>\n<meta property=\"og:description\" content=\"On Thursday, November 30, Apple released a bug-fix update for macOS, iOS, and iPadOS, addressing two &quot;actively exploited&quot; security vulnerabilities. Let&#039;s\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/\" \/>\n<meta property=\"og:site_name\" content=\"The Mac Security Blog\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/JoshLong\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-30T22:57:53+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-12-01T22:38:40+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"400\" \/>\n\t<meta property=\"og:image:height\" content=\"260\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@theJoshMeister\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Joshua Long\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"10 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\",\"name\":\"Intego\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"sameAs\":[],\"logo\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"width\":875,\"height\":875,\"caption\":\"Intego\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"name\":\"The Mac Security Blog\",\"description\":\"Keep Macs safe from the dangers of the Internet\",\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#primaryimage\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg\",\"width\":400,\"height\":260,\"caption\":\"Apple software update red critical urgent actively exploited zero-day vulnerability with subtle this is fine meme dog fire background\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#webpage\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/\",\"name\":\"macOS Sonoma 14.1.2 patches 2 zero-day vulnerabilities; others remain unpatched - The Mac Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#primaryimage\"},\"datePublished\":\"2023-11-30T22:57:53+00:00\",\"dateModified\":\"2023-12-01T22:38:40+00:00\",\"description\":\"On Thursday, November 30, Apple released a bug-fix update for macOS, iOS, and iPadOS, addressing two \\\"actively exploited\\\" security vulnerabilities. Let's\",\"breadcrumb\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.intego.com\/mac-security-blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"macOS Sonoma 14.1.2 patches 2 zero-day vulnerabilities; others remain unpatched\"}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#webpage\"},\"author\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/dcf592275ba6edde8d20f1e60029c6b1\"},\"headline\":\"macOS Sonoma 14.1.2 patches 2 zero-day vulnerabilities; others remain unpatched\",\"datePublished\":\"2023-11-30T22:57:53+00:00\",\"dateModified\":\"2023-12-01T22:38:40+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#webpage\"},\"wordCount\":1717,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg\",\"keywords\":[\"Apple TV\",\"iOS\",\"iOS 15\",\"iOS 16\",\"iOS 17\",\"macOS Monterey\",\"macOS Sonoma\",\"macOS Ventura\",\"Safari\",\"Security Updates\",\"watchOS\",\"watchOS 10\"],\"articleSection\":[\"Security &amp; Privacy\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#respond\"]}]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/dcf592275ba6edde8d20f1e60029c6b1\",\"name\":\"Joshua Long\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#personlogo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/5ad29f4111ce14911abaa98cbbcdea42?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/5ad29f4111ce14911abaa98cbbcdea42?s=96&d=mm&r=g\",\"caption\":\"Joshua Long\"},\"description\":\"Joshua Long (@theJoshMeister), formerly Intego\\u2019s Chief Security Analyst, is a renowned security researcher and writer, and an award-winning public speaker. Josh has a master\\u2019s degree in IT concentrating in Internet Security and has taken doctorate-level coursework in Information Security. Apple has publicly acknowledged Josh for discovering an Apple\\u00a0ID authentication vulnerability. Josh has conducted cybersecurity research for well over 25 years, which is often featured by major news outlets worldwide. Keep up with Josh via X\/Twitter, LinkedIn, Facebook, Instagram, YouTube, Patreon, Mastodon, the JoshMeister on Security, and more. \\u2014\",\"sameAs\":[\"https:\/\/security.thejoshmeister.com\",\"https:\/\/www.facebook.com\/JoshLong\",\"https:\/\/www.instagram.com\/thejoshmeister\/\",\"https:\/\/www.linkedin.com\/in\/thejoshmeister\",\"https:\/\/www.pinterest.com\/thejoshmeister\/\",\"https:\/\/twitter.com\/theJoshMeister\",\"https:\/\/www.youtube.com\/@theJoshMeister\"],\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/author\/joshlong\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"description":"On Thursday, November 30, Apple released a bug-fix update for macOS, iOS, and iPadOS, addressing two \"actively exploited\" security vulnerabilities. Let's","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/","og_locale":"en_US","og_type":"article","og_title":"macOS Sonoma 14.1.2 patches 2 zero-day vulnerabilities; others remain unpatched - The Mac Security Blog","og_description":"On Thursday, November 30, Apple released a bug-fix update for macOS, iOS, and iPadOS, addressing two \"actively exploited\" security vulnerabilities. Let's","og_url":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/","og_site_name":"The Mac Security Blog","article_author":"https:\/\/www.facebook.com\/JoshLong","article_published_time":"2023-11-30T22:57:53+00:00","article_modified_time":"2023-12-01T22:38:40+00:00","og_image":[{"width":400,"height":260,"url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_creator":"@theJoshMeister","twitter_misc":{"Written by":"Joshua Long","Est. reading time":"10 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Organization","@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization","name":"Intego","url":"https:\/\/www.intego.com\/mac-security-blog\/","sameAs":[],"logo":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","width":875,"height":875,"caption":"Intego"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo"}},{"@type":"WebSite","@id":"https:\/\/www.intego.com\/mac-security-blog\/#website","url":"https:\/\/www.intego.com\/mac-security-blog\/","name":"The Mac Security Blog","description":"Keep Macs safe from the dangers of the Internet","publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#primaryimage","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","width":400,"height":260,"caption":"Apple software update red critical urgent actively exploited zero-day vulnerability with subtle this is fine meme dog fire background"},{"@type":"WebPage","@id":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#webpage","url":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/","name":"macOS Sonoma 14.1.2 patches 2 zero-day vulnerabilities; others remain unpatched - The Mac Security Blog","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#primaryimage"},"datePublished":"2023-11-30T22:57:53+00:00","dateModified":"2023-12-01T22:38:40+00:00","description":"On Thursday, November 30, Apple released a bug-fix update for macOS, iOS, and iPadOS, addressing two \"actively exploited\" security vulnerabilities. Let's","breadcrumb":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.intego.com\/mac-security-blog\/"},{"@type":"ListItem","position":2,"name":"macOS Sonoma 14.1.2 patches 2 zero-day vulnerabilities; others remain unpatched"}]},{"@type":"Article","@id":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#article","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#webpage"},"author":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/dcf592275ba6edde8d20f1e60029c6b1"},"headline":"macOS Sonoma 14.1.2 patches 2 zero-day vulnerabilities; others remain unpatched","datePublished":"2023-11-30T22:57:53+00:00","dateModified":"2023-12-01T22:38:40+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#webpage"},"wordCount":1717,"commentCount":0,"publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","keywords":["Apple TV","iOS","iOS 15","iOS 16","iOS 17","macOS Monterey","macOS Sonoma","macOS Ventura","Safari","Security Updates","watchOS","watchOS 10"],"articleSection":["Security &amp; Privacy"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.intego.com\/mac-security-blog\/macos-sonoma-14-1-2-patches-2-zero-day-vulns-other-vulns-unpatched\/#respond"]}]},{"@type":"Person","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/dcf592275ba6edde8d20f1e60029c6b1","name":"Joshua Long","image":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#personlogo","inLanguage":"en-US","url":"https:\/\/secure.gravatar.com\/avatar\/5ad29f4111ce14911abaa98cbbcdea42?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/5ad29f4111ce14911abaa98cbbcdea42?s=96&d=mm&r=g","caption":"Joshua Long"},"description":"Joshua Long (@theJoshMeister), formerly Intego\u2019s Chief Security Analyst, is a renowned security researcher and writer, and an award-winning public speaker. Josh has a master\u2019s degree in IT concentrating in Internet Security and has taken doctorate-level coursework in Information Security. Apple has publicly acknowledged Josh for discovering an Apple\u00a0ID authentication vulnerability. Josh has conducted cybersecurity research for well over 25 years, which is often featured by major news outlets worldwide. Keep up with Josh via X\/Twitter, LinkedIn, Facebook, Instagram, YouTube, Patreon, Mastodon, the JoshMeister on Security, and more. \u2014","sameAs":["https:\/\/security.thejoshmeister.com","https:\/\/www.facebook.com\/JoshLong","https:\/\/www.instagram.com\/thejoshmeister\/","https:\/\/www.linkedin.com\/in\/thejoshmeister","https:\/\/www.pinterest.com\/thejoshmeister\/","https:\/\/twitter.com\/theJoshMeister","https:\/\/www.youtube.com\/@theJoshMeister"],"url":"https:\/\/www.intego.com\/mac-security-blog\/author\/joshlong\/"}]}},"jetpack_featured_media_url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2023\/11\/Apple-software-update-red-critical-urgent-this-is-fine-bg-400x260-1.jpg","jetpack_publicize_connections":[],"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p4VAYd-pQn","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/99347"}],"collection":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/users\/14"}],"replies":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/comments?post=99347"}],"version-history":[{"count":10,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/99347\/revisions"}],"predecessor-version":[{"id":99362,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/99347\/revisions\/99362"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media\/99268"}],"wp:attachment":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media?parent=99347"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/categories?post=99347"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/tags?post=99347"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}