This article originally appeared in TidBITS on 2016-05-16 at 11:22 p.m.
The permanent URL for this article is:
Include images: Off

Security Update 2016-003 (Mavericks and Yosemite)

by Agen G. N. Schmitz

While OS X 10.11.5 El Capitan gets the bulk of security patches in last week’s release (see “Apple Releases OS X 10.11.5, iOS 9.3.2, tvOS 9.2.1, and watchOS 2.2.1 [1],” 16 May 2016), Apple does include a select few patches for 10.9 Mavericks and 10.10 Yosemite in Security Update 2016-003 [2]. The update patches a vulnerability that led to the disclosure of kernel memory content, addresses a custom URL scheme issue that enabled an attacker to execute arbitrary code, and resolves multiple memory corruption issues that could lead to application termination or code execution. (Free. For 10.9.5 Mavericks, 370.9 MB; for 10.10.5 Yosemite [4], 454.8 MB)