Apple released security updates for new macOS Big Sur 11.0.1 and Safari 14.0.1. The tech giant also issued updates for macOS High Sierra 10.13.6 and macOS Mojave 10.14.6.
An attacker could exploit some of these vulnerabilities to take control of affected devices.
New macOS Big Sur
Apple patched multiple vulnerabilities in macOS Big Sur 11.0.1, which also includes security content of new macOS Big Sur 11.0.
Big Sur is Apple’s 17th and current major release of macOS and successor to macOS Catalina version 10.15.
Apple announced the new macOS version at their Worldwide Developers Conference (WWDC) on June 22, 2020 and released Big Sur to the public on November 12, 2020.
Other macOS security updates
Apple also released macOS Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave for macOS High Sierra 10.13.6 and macOS Mojave 10.14.6 versions.
Apple confirmed all three of the macOS vulnerabilities are being exploited in the wild.
Apple confirmed one of the kernel vulnerabilities CVE-2020-27932 could allow a malicious application to execute arbitrary code with kernel privileges. The other kernel vulnerability CVE-2020-27950 could lead to kernel memory disclosure.
The third macOS patch fixes a FontParser vulnerability CVE-2020-27930.
These same exploited vulnerabilities were disclosed earlier in November as part of macOS and iOS updates.
Safari security updates
Finally, Apple released security updates for Safari 14.0.1, available for macOS Catalina and macOS Mojave.
The update fixes a kernel vulnerability CVE-2020-9945 and Safari vulnerability CVE-2020-27918.
Readers can also check out the Apple Security Updates page for all the latest updates.