Thoughtful, detailed coverage of the Mac, iPhone, and iPad, plus the TidBITS Content Network for Apple consultants.

macOS High Sierra 10.13 Supplemental Update Fixes Early Bugs

We always recommend delaying major macOS upgrades until Apple has had a chance to fix early bugs. The company has taken its first swing at the most egregious problems in macOS 10.13 High Sierra, not with the 10.13.1 update that we had expected, but with the “macOS High Sierra 10.13 Supplemental Update.” It’s highly focused, providing fixes for five specific problems:

  • It improves the robustness of the installer, which we hope will address reported issues with installations failing to complete.

  • It fixes a bug that caused the cursor in Adobe InDesign to look like a pixelated box. Unfortunately, Apple said nothing about problems that users of Adobe Illustrator are having with APFS — that may have to wait for 10.13.1 or an Illustrator update.

  • It eliminates a problem that prevented the user from deleting email messages from Yahoo accounts in Mail.

  • It fixes an embarrassing mistake in Disk Utility — it turns out that if you set a hint in Disk Utility when creating an encrypted APFS volume, the password was stored as the hint, making it trivially easy to decrypt the volume. Oops!

  • It requires the user password when prompting for keychain access, which should prevent malicious applications from extracting passwords from the system keychain by bypassing the keychain access prompt with a synthetic click.

macOS High Sierra 10.13 Supplemental Update was 915 MB on my Retina iMac, and you can get it in the Updates screen of the App Store app.

Apple says that it has already built these fixes into new downloads of High Sierra, so if you haven’t yet updated, you won’t need the macOS High Sierra 10.13 Supplemental Update when you do. But if you have already upgraded to High Sierra, we recommend installing this one sooner rather than later.


Make friends and influence people by sponsoring TidBITS!
Put your company and products in front of tens of thousands of
savvy, committed Apple users who actually buy stuff.
More information: <>

Comments about macOS High Sierra 10.13 Supplemental Update Fixes Early Bugs
(Comments are closed.)

Should also be noted that this update will NOT work (or even show up for) with the Public Beta.
Norm Evangelista  2017-10-06 17:26
Unfortunately, this update does not fix the InDesign issue I'm seeing, where document windows and/or their contents are not visible at all.
Adam Engst  An apple icon for a TidBITS Staffer 2017-10-06 17:37
Ach, sorry to hear it. InDesign seems to be fine here.
Lindsey Thomas Martin  2017-10-06 18:47
Norm, there's an article about ID and OS 10.13 at Could you add a comment there?
Steve Werner  2017-10-06 22:02
The fix is working for me in InDesign (I'm the one who wrote the posting). I suspect that you may be having a different issue.
steve12  2017-10-09 22:40
If you encrypted an APFS volume (including the system boot
Volume, or an external hard disk) do you need to do anything other than install the update? Do you need to change the password or otherwise reencrypt?
Adam Engst  An apple icon for a TidBITS Staffer 2017-10-10 10:20
No, the vulnerability could only be accessed locally, so there's no need to change anything after installing the update unless you think a bad guy had already figured it out in your office or home.
B. Jefferson Le Blanc  2017-10-10 21:41
For what it's worth, given the news that the supplemental update is built into current downloads of madOS 10.13, I have replaced the archived versions I'm keeping of the High Sierra installer with the latest download. One less issue to worry about when I install it again.
Riley P. Richardson  An apple icon for a TidBITS Contributor 2017-10-12 12:44
I installed the Supplemental Update on my MacBookPro13,1 and have found that it did not fix the issue of zombie email from Yahoo. As before the Supplemental Update, when I use "Erase Deleted Items" on Yahoo email in its (IMAP) trash folder it will often reappear, sometimes twice.