Apple rolls out fix for MacBook's security flaw

Angelica Greene
December 4, 2017

In simpler words, while the security fix is buggy, researchers confirm that after updating to 10.13.1 and then re-installing the security fix, the security update dies finally kick in and resolve the issue, however, Apple gives no such instruction on the update, leaving the users who do not go through the re-installung process, still vulnerable. All Macs running High Sierra appeared to be affected.

The update fixes serious concerns of vulnerability that allowed anyone to log into a Mac without entering the password.

Apple has released macOS High Sierra 10.13.2 beta 6 which fixes a major vulnerability that allowed root access to macOS without a password. As of now, there is no software patch to fix the file sharing screw-up for everyday macOS users that may be uneasy about messing around in Terminal. Ergin said staff members reported the vulnerability to Apple on November 23, and he disclosed the flaw publicly in a tweet on Tuesday.

Rickie Fowler shoots final-round 61 to win 2017 Hero World Challenge
Jordan Spieth (72) and England's Justin Rose (71) were tied for second at nine-under 207, one stroke ahead of Italy's Francesco Molinari (71).

Russian Federation accuses USA of 'bloodthirsty tirade' over threat to destroy North Korea
The report would seem to confirm Pyongyang's claim that the Hwasong-15 can carry " super-large heavy nuclear warheads ". To get to the West Coast, the North needs to keep that weight down to 500 kilograms (1,100 pounds), he added.

Guardiola admits regret, says he 'cannot control' himself
He's saying something he doesn't believe". "I felt it could still happen even that late in added time". He says that it is not simply a case of mind games but a genuine respect for every side he faces.

A few days ago, a bug was discovered that enabled root user access without a password when anyone attempted to login as root on a system without the root user enabled. This morning, as of 8 a.m., the update is available for download, and starting later today it will be automatically installed on all systems running the latest version (10.13.1) of macOS High Sierra. "In the meantime, setting a root password prevents unauthorized access to your Mac. And worse, two of those Mac users say they've also tried re-installing Apple's security patch after that upgrade, only to find that the "root" problem still persists until they reboot their computer, with no warning that a reboot is necessary". Anyone can log in as "root" with empty password after clicking on login button several times.

"Oh my god that should not work but it does", another user responded yesterday on the forum.

Apparently, the only way to truly solve the problem for users that were "late" to update to the newest version of macOS High Sierra is to install 10.13.1, reboot, then install the root security update. When that happens, "Make sure to update your Macs and MacBooks at your earliest opportunity after it is released", he added.

Other reports by GizPress

Discuss This Article

FOLLOW OUR NEWSPAPER