Multiple vulnerabilities patched by Apple

Memory corruption presents a problem in Apple’s browsers and software.

Threat: A security bug in Safari and a flaw in macOS High Sierra led to memory corruption issues.

Damage risk: The Safari flaw allowed for the possibility of arbitrary code execution. The High Sierra vulnerability allowed applications to gain elevated privileges. Attackers could exploit these flaws to take control of affected systems.

Exploited flaw: The Safari flaw, CVE-2018-4200, occurred when processing maliciously crafted web content.

Fixes/Workarounds: Apple released an updated version of Safari (11.1) that’s available for OS X El Capitan 10.11.6, macOS Sierra 10.12.6 and macOS High Sierra 10.13.4. The company also released an updated version of macOS High Sierra, version 10.13.4.

Info: tinyurl.com/apple487