Security Update 2021-003 Catalina and 2021-004 Mojave
Apple has released Security Update 2021-003 for macOS 10.15 Catalina and Security Update 2021-004 for 10.14 Mojave, patching 36 security vulnerabilities in Catalina and 30 vulnerabilities in Mojave. Both updates address logic issues with the kernel that could allow an application to execute arbitrary code with kernel privileges, resolve a logic issue with AppleScript that could allow a malicious application to bypass Gatekeeper checks, and address several Heimdal-related memory corruption and logic issues. None of these vulnerabilities are actively being exploited in the wild, so there’s likely no harm in waiting a week or two before installing. If you notice any problems after updating, please let us know in the comments. (Free, various sizes, Catalina release notes and Mojave release notes, macOS 10.15.7 and 10.14.6)
Mojave Security Update 2021-004 breaks Kerberos! If you are bound to Active Directory using a Mobile AD account then you will have a very bad day.
I was able to create a workaround that should work until Apple releases a fix. I recommend you back up any files you make changes to prior to saving your work. Please follow these few easy steps below.
Please update at your own RISK. These issues were resolved for me on two different workstations but I cannot guarantee that they will work the same for you.*****
Wow, @mashedgear - thank you VERY much for that fix!
This was causing me headaches, locking up a remote machine I use for work, which meant having to ssh in to do a forced restart.
One point: It looks like the formatting in your post marked the words “optional” in bold, and there are extraneous asterisks around the “use_kcminit” keyword in your post. So, if anyone else is confused, the instructions are to open each of those files, delete just that keyword (use_kcminit) at the end of the line, keeping the rest of the line.
Very useful workaround!
Made an account just to thank you. Thanks for saving the headaches! This solves all the login issues freezing/hanging, etc. Much appreciated. Works as of 6/25/2021 on Mojave after the update.
Just like litePenguines, signed up for this site for thanking. Also could you plz elaborate abit on what are the purposes of thoese files and the meaning of parameters used in them that we removed. Thanks again…
It’s a trend: I too signed up just to say thank you. After a few weeks, it finally got to be too big a pain to put up with, and yours was the second article I found. You’ve also saved me a lot of headaches. THANKS!
Does Security Update 2021-005 Mojave fix this issue? I had to reinstall to go back to 2021-003 and am now too scared to do any further updates to my Mojave system.
I heard from some Enterprise IT’s that it does and they were trying to remember how to back out of the workarounds that they used.
Join the discussion in the TidBITS Discourse forum