Description: This issue was addressed by updating to sudo version 1.9.5p2.Impact: a local attacker may be able to escalate his privileges.Available for: macOS Big Sur 11.2, macOS Catalina 10.15.7, macOS Mojave 10.14.6. ![]() Apple has posted the following details on its support website: Fill out the account information to activate your protection. Follow the instructions to complete the installation. Open the installer, and then click Install Trend Micro Antivirus. Qualys researchers found that they could trigger a "heap overflow" bug in the Sudo app to modify the current user's low-privileged access to root-level commands, thereby granting the attacker l '' access to the entire systemĪpple says today's macOS Big Sur 11.2.1 update, along with the additional updates for macOS Catalina 10.15.7 and macOS Mojave 10.14.6, includes a fix for the bug. We recommend upgrading your Mac to its latest version so you can experience the full features of Antivirus for Mac. The vulnerability, revealed last week as CVE-2021-3156 (aka Baron Samedit) by security researchers at Qualys, impacts Sudo, an application that allows administrators to delegate limited root access to users. ![]() ![]() Along with a fix for MacBook Pro charging issues, the update also brings a notable security fix for a Sudo bug that was reported last week.Īs we explained last week, the Sudo bug could allow an ordinary user to gain root access to a Mac, although an attacker would also have to combine with malware or a brute force attack to gain user access first. Apple today released macOS Big Sur 11.2.1 to the public, along with additional updates for macOS Catalina 10.15.7 and macOS Mojave 10.14.6.
0 Comments
Leave a Reply. |