Apple is separating the new smartphones into its usual low-cost versus high-cost categories, with big differences between the two models coming down to the camera, display, and battery life.
iOS 13 & watchOS 6 Now Available
Apple Releases macOS High Sierra 10.13 Supplemental Update With Fix for APFS Disk Utility Bug and Keychain Vulnerability
Apple today released a supplemental update to macOS High Sierra 10.13, the first update to the macOS High Sierra operating system that was released to the public in late September. The macOS High Sierra 10.13 update comes just over one week after the release of macOS High Sierra.
The new version of macOS High Sierra 10.13 is a free update for all customers who have a compatible machine. The update can be downloaded using the Software Update function in the Mac App Store.
The supplemental macOS High Sierra 10.13 update addresses a software vulnerability that could expose the passwords of encrypted Apple File System volumes in plain text in Disk Utility.
Apple has released a support document alongside the Supplemental Update that walks users through the process of protecting their data if macOS High Sierra is showing a password instead of a password hint on an encrypted APFS volume.
Steps include installing the new update, creating an encrypted backup of data for the affected volume, erasing the drive, reformatting to APFS, then APFS (Encrypted), and finally restoring the data that was backed up.
A separate security support document says that the update also fixes a vulnerability that could let a hacker steal the usernames and passwords of accounts stored in Keychain using a malicious third-party app.
And finally, according to the release notes accompanying the update, it also improves installer robustness, fixes a cursor graphic bug in Adobe InDesign, and resolves an issue where messages couldn't be deleted from Yahoo accounts in Mail.
macOS High Sierra introduces a new more modern file system designed for flash storage (APFS), Metal 2, Safari improvements that protect user privacy and prevent autoplay videos, and improvements to several apps like Photos, Mail, Notes, and more.
The new version of macOS High Sierra 10.13 is a free update for all customers who have a compatible machine. The update can be downloaded using the Software Update function in the Mac App Store.
The supplemental macOS High Sierra 10.13 update addresses a software vulnerability that could expose the passwords of encrypted Apple File System volumes in plain text in Disk Utility.
Apple has released a support document alongside the Supplemental Update that walks users through the process of protecting their data if macOS High Sierra is showing a password instead of a password hint on an encrypted APFS volume.
Steps include installing the new update, creating an encrypted backup of data for the affected volume, erasing the drive, reformatting to APFS, then APFS (Encrypted), and finally restoring the data that was backed up.
A separate security support document says that the update also fixes a vulnerability that could let a hacker steal the usernames and passwords of accounts stored in Keychain using a malicious third-party app.
And finally, according to the release notes accompanying the update, it also improves installer robustness, fixes a cursor graphic bug in Adobe InDesign, and resolves an issue where messages couldn't be deleted from Yahoo accounts in Mail.
macOS High Sierra introduces a new more modern file system designed for flash storage (APFS), Metal 2, Safari improvements that protect user privacy and prevent autoplay videos, and improvements to several apps like Photos, Mail, Notes, and more.
[ 213 comments ]
Top Rated Comments
(View all)
26 months ago
Someone will complain about having to install updates. They'd rather have Microsoft which would wait to patch a security issue because it's not part of their update release schedule. There were a number complaining of recent iOS updates in this way.
26 months ago
At least Apple has been responsive, as the APFS vulnerability was just revealed within the past day.
26 months ago
That was the fastest fix I've ever seen..!
How about other meaningful updates?
How about other meaningful updates?
26 months ago
Excellent. The bug gets publicized this morning, it's fixed by midday (my time). Can't beat a deal like that. I don't care what the haters say.
26 months ago
At least Apple has been responsive, as the APFS vulnerability was just revealed within the past day.
I wouldn't be surprised if Apple knew about this bug before it was publicized and already had been working on a fix.
26 months ago
They also fix the keychain bug, which malicious apps could take advantage of and extract all keychain passwords.
https://support.apple.com/en-us/HT208165
https://support.apple.com/en-us/HT208165
26 months ago
...fixes a cursor graphic bug in Adobe InDesign
HURRAH! That was v quick. Thought we'd wait a couple of months for that - kudos to Apple for the speed of this update.
HURRAH! That was v quick. Thought we'd wait a couple of months for that - kudos to Apple for the speed of this update.
26 months ago
What's troubling is that Apple stores your passwords unencrypted or has a way to decrypt them.
That's inexcusable.
Normally when you key in a password on any sane operating system, it encrypts what you keyed in with an one-way encryption algorithm. Then it compares the encrypted string vs. what's stored encrypted. That's the way it's supposed to work.
What this says is that Apple either chooses to ignore that, or doesn't care. Either way, the cat's out of the bag, there's a way for Apple to see or recover your password easily.
What is troubling is the inability of some folk to actually read and comprehend the technical details of how a thing works.
This is an issue with "Disk Utility.app", and effects those that "added" an encrypted APFS volume with a password hint, using Disk Utility.app, after installing the release version of High Sierra.
The password is not "stored" unencrypted, unless you added an encrypted APFS volume using Disk Utility.app - with a password hint, after installing the release version of High Sierra. Even then it is merely -- at the time of clicking the button to initiate the encryption -- copying a text string that has not yet been encrypted (but hidden by dots) to the Hint field.
Should the OS have been released without this bug? Yes.
Did it actually effect you or your boot volume? Not unless you like doing things the hard way.
If you have added an encrypted APFS volume, install the supplemental update on your boot volume, and follow the instructions to remediate the password in the hints field for that added volume.
All that said, I'm sure there are some that won't be able to read past the first sentence of my reply before the outrage machine starts typing.
26 months ago
If they only just found about the Disk Utility bug then this was very fast, so well done to them on that.
[ Read All Comments ]
Burst Mode refers to when the camera on your iPhone captures a series of photos in rapid succession, at a rate of ten frames per second. It's a great way to shoot an action scene or an unexpected...
Apple's Portrait Mode has become a popular way of taking impressive shots using a depth-of-field effect known as bokeh, allowing iPhone users to shoot a photo that keeps the subject sharp with a...
Apple has redesigned the native Camera app on the iPhone 11 and iPhone 11 Pro to make space for the various additional shooting options available in its new flagship phones, and one particularly...
Apple's massive launch week has come to a close, with the iPhone 11, iPhone 11 Pro, iPhone 11 Pro Max, and Apple Watch Series 5 all debuting on Friday. And as if that wasn't enough, Thursday...
With the arrival of the iPhone 11, iPhone 11 Pro and iPhone 11 Pro Max, Apple has introduced an optional new camera feature in iOS 13 that's designed to allow you to correct the alignment of...
For this week's giveaway, we've teamed up with AnyTrans to offer MacRumors readers a chance to win one of Apple's new iPhone 11 Pro Max devices and a lifetime AnyTrans license.
For...
Due to Apple seeding the iOS 13.1 beta prior to the public release of iOS 13, upgrading to a new iPhone may be a bit trickier this year.
In a support document, Apple has provided instructions...
Apple today the golden master version of an upcoming tvOS 13 update to developers, one week after seeding the eleventh beta and more than three months after unveiling the tvOS 13 software at the...
