macOS Big Sur 11.2.1 Released

pablozi

pablozi

Level 27
Thread author
Verified
Helper
Top poster
Well-known
Jun 14, 2011
1,654

What's new in the updates for macOS Big Sur

Learn what has changed in the updates available for macOS Big Sur.
support.apple.com
macOS Big Sur 11.2.1 addresses an issue that may prevent the battery from charging in some 2016 and 2017 MacBook Pro models.

About the security content of macOS Big Sur 11.2.1, macOS Catalina 10.15.7 Supplemental Update, and macOS Mojave 10.14.6 Security Update 2021-002

This document describes the security content of macOS Big Sur 11.2.1, macOS Catalina 10.15.7 Supplemental Update, and macOS Mojave 10.14.6 Security Update 2021-002.
support.apple.com
macOS Big Sur 11.2.1, macOS Catalina 10.15.7 Supplemental Update*, macOS Mojave 10.14.6 Security Update 2021-002:

Intel Graphics Driver

Available for: macOS Big Sur 11.2, macOS Catalina 10.15.7

Impact: An application may be able to execute arbitrary code with kernel privileges

Description: An out-of-bounds write was addressed with improved input validation.

CVE-2021-1805: ABC Research s.r.o. working with Trend Micro Zero Day Initiative

Intel Graphics Driver

Available for: macOS Big Sur 11.2, macOS Catalina 10.15.7

Impact: An application may be able to execute arbitrary code with kernel privileges

Description: A race condition was addressed with additional validation.

CVE-2021-1806: ABC Research s.r.o. working with Trend Micro Zero Day Initiative

Sudo

Available for: macOS Big Sur 11.2, macOS Catalina 10.15.7, macOS Mojave 10.14.6

Impact: A local attacker may be able to elevate their privileges

Description: This issue was addressed by updating to sudo version 1.9.5p2.

CVE-2021-3156: Qualys
 
  • Like
Reactions: JB007, silversurfer, Nevi and 7 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 62
Verified
Helper
Top poster
Content Creator
Well-known
Apr 24, 2016
5,138
Apple fixes SUDO root privilege escalation flaw in macOS:
Apple has fixed a sudo vulnerability in macOS Big Sur, Catalina, and Mojave, allowing any local user to gain root-level privileges.

Last month, security researchers at Qualys disclosed the SUDO CVE-2021-3156 vulnerability, aka Baron Samedit, that allowed them to gain root privileges on multiple Linux distributions, including Debian, Ubuntu, and Fedora 33.
Click to expand...
Hickey has confirmed with BleepingComputer that the latest Apple security updates fix the vulnerability and that Apple users should apply the update as soon possible.

"Everyone should apply this update as a priority as attackers have had over a week to work on their attacks. This update addresses the vulnerability which could be used to execute code with root privileges," Hickey told BleepingComputer.

In addition to the sudo fix, today's updates also fix two arbitrary code execution vulnerabilities in Intel graphics drivers.

Due to the severity of the vulnerabilities, it is strongly advised that macOS users install the security updates as soon as possible.
Click to expand...
www.bleepingcomputer.com

Apple fixes SUDO root privilege escalation flaw in macOS

Apple has fixed a sudo vulnerability in macOS Big Sur, Catalina, and Mojave, allowing any local user to gain root-level privileges.
www.bleepingcomputer.com www.bleepingcomputer.com
 
  • Like
Reactions: JB007, silversurfer, Nevi and 3 others

Similar threads

upnorth
    • +Reputation
    • Like
Update Security Update 2022-005 Catalina
Replies
0
Views
155
macOS
upnorth
upnorth
upnorth
    • Like
    • +Reputation
    • Thanks
Update Security Update 2022-004 Catalina
Replies
0
Views
435
macOS
upnorth
upnorth
pablozi
    • Like
macOS Big Sur 11.2 Released
Replies
0
Views
1,252
macOS
pablozi
pablozi
Top Bottom