Apple on Thursday released a second “Supplemental Update” for macOS Mojave 10.14.6, as well as security updates for High Sierra and Sierra. The update fixes a flaw that could be used by malware.
“Supplemental Update 2” is “recommended for all users and improves the security of macOS.” The update itself is 1.25 gigabytes in size.
The update’s security content page advises that it fixes one bug. Apple says “a remote attacker may be able to cause unexpected application termination or arbitrary code execution” in unpatched Macs, with the update’s affects being “an out-of-bounds read was addressed with improved input validation.”
The security issue is listed as CVE-2019-8641 and Samuel Groß and Natalie Silvanovich of Google Project Zero are given credit for discovering the flaw.
macOS will have the following build numbers after you install the update:
- macOS 10.14 Mojave: 18G103
- macOS 10.13 High Sierra: 17G8037
- macOS 10.12 Sierra: 16G2136
The first Supplemental Update for macOS Mojave 10.14.6, which fixed an issue that may prevent certain Macs from waking from sleep properly, was released on August 1.