Updating macOS can bring back the nasty "root" security bug

Share

Furthermore, however, the root security fix doesn't reinstall as seamlessly for those who are installing again after updating their machine to macOS 10.13.1. However, the company has not yet provided any definitive date for the next software update. "Are you aware of it @Apple?" his tweet said. "Dear @AppleSupport, we noticed a *HUGE* security issue at MacOS High Sierra".

Numerous users have confirmed to Wired that Apple's hastily rolled out bug fix is far from flawless itself.

This has been an incredibly awful week for Apple's operating systems.

Warm End To Weekend
On Monday , the high is forecasted to be in the mid-50s and low in the upper 30s with mostly sunny skies throughout the day. Most of central and eastern Kansas will remain warm on Monday as the cold front will not blow through until late afternoon.

Forbes writer Thomas Fox-Brewster wrote yesterday that the bug "may go down as one of the most embarrassing vulnerabilities in Apple history". However, if your device is running the 10.13.2 beta, you will likely have to wait until the next build is released.

The serious vulnerability has been identified as CVE-2017-13872, which has been fixed by Apple through Security Update 2017-001 for macOS 10.13.1 on Wednesday. "In the meantime, setting a root password prevents unauthorized access to your Mac".

Affected users can change their root password as a fix in the meantime.

EPL: Everton hire Sam Allardyce as manager on 18-month deal
The Reds manager said: "With Sam I have kind of a history, when he was at Sunderland and he said something after the game then he had to row back, not for me, only because we are in the public".

"If the root user is already active, you need to make sure that the password is not empty", added Apple. Reportedly, users who had "not yet upgraded their operating system from the original version of High Sierra 10.13.0, to the most recent version 10.13.1, but had downloaded the patch, say the "root" bug reappears when they install the most recent macOS system update".

While Ergin's disclosure has received widespread attention, the bug was actually reported earlier this month in a Apple Developer Forum thread about macOS High Sierra. The flaw allowed a user to gain admin access to the PC without the owner's password just by using "root" as the user name and clicking the unlock button two times to get in. "This is really REALLY bad".

Several experts have lambasted Apple for allowing the vulnerability in the first place.

(KMI) Position Raised by Norinchukin Bank The
Morgan Stanley has "Equal-Weight" rating and $90 target. (NYSE:KMI) earned "Neutral" rating by Piper Jaffray on Friday, April 1. The pipeline company reported $0.15 earnings per share (EPS) for the quarter, hitting the Zacks' consensus estimate of $0.15.

Share