I installed the original version on all of my Macs and iPhones etc. No issues, nothing broke...
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple Releases Revised iOS and macOS Security Updates to Fix Actively Exploited Vulnerability and Safari Bug
- Thread starter MacRumors
- Start date
- Sort by reaction score
What is it with Apple users? You protect yourself from flaws not" "kiss my phone good night and put her under my pillow" *Lyrics borrowed and changed from the track 'Wish I was in El Salvador' by Jello Biafra and DOA. 'Last scream of the missing Neighbor' I can just imagine how my clients would react if I didn't patch a bunch of Cisco gear because "I'm scared" or I quoted "Piggin Power" Jeez...
With several posts saying the same thing, you seem pretty invested in persuading people not to install this security update.
Most curious.
Almost the sort of thing someone actively exploiting the bug would do..
😜
Any news on the full 13.4.1 installer? Seems to still show the 22F82 version, so without the RSR.
Is it usual for Apple to update the installer as well after some time?
Is it usual for Apple to update the installer as well after some time?
If a vulnerability is widely unpatched then there's more encouragement for people to exploit it. So it might be very limited now as it's new, but the more people who remain unpatched the more likely it is that the exploitation becomes more widespread as it gets more victims so is worth doing for hackers
They got it right the first time, arguably. The error lies with the websites not being able to parse a set of parentheses. Anyway, it was simpler for Apple to fix.
I must assume you're being facetious
How would you even know? These sorts of things don't typically broadcast that they're stealing data or using your device as a foothold to infect every other device on your home and, if you connect there, work network.
While it's flattering to think that these hacks are about the individual, they probably don't care about your data specifically. They care more about using you to get to more valuable data that you may have access to.
That's a bizarre response. I've been developing software from the 1970s and have had my share of updates breaking things over that period of time. If you're running production or run your life off a device, then you wait for confirmation that a fix doesn't break other things. If you're a company, then you test it out before giving the all-clear to download and install it.
At my previous job, they took about 9 months to approve updates to major macOS releases.
There we go !! Let's hope nothing else goes wrong this time 😁
Just checked Facebook and Instagram from Safari on my Mac and both work just fine. Seems like they handled it pretty well this time.
Also apparently Safari's version is now just 16.5.2 without the (a).
Just checked Facebook and Instagram from Safari on my Mac and both work just fine. Seems like they handled it pretty well this time.
Also apparently Safari's version is now just 16.5.2 without the (a).
Apple will probably not release a full installer with the RSRs installed. They are not applied to the sealed system volume. Any user who installs or upgraded to 13.4.1 will need to then apply the RSR.
I think I finally have an idea why security updates are (a), (b), etc., Apple probably has some bureaucracy that kicks in for testing x.x.x releases, so these security releases using (a), (b), etc. can bypass that bureaucracy.
Here is an idea Apple, how about not skipping that testing. They can still be fast-tracked, but they still need to be tested.
Here is an idea Apple, how about not skipping that testing. They can still be fast-tracked, but they still need to be tested.
Wow… this thread is filled with asinine comments. Just install the security update and be done. How old are we?
Just 43 here!
Anyway the problem is, Apple keeps breaking stuff lately. Apple is the new Microsoft, and iOS/macOS became the new Vista.
They used to point at MS and now are doing the same and sometimes even worse.
Last edited:
Just turned 43 here recently too...
I get it, but I feel that's with any company anymore. You should see all of the security vulnerabilites within networking equipment discovered each day.
Yeah i know, vulnerabilities exist everywhere.
Apple loved to throw stones in their adverts, and the ones who lives in glass houses shouldn’t throw stones.
At least they acknowledged that they are just another company with bad habits, and ditched the “Just works!” campaign, just like the “iPhone privacy” campaign, heh.
Last edited:
Yeah, well, Facebook is fine because Meta fixed it overnight when the (a) update was released. You knew that, right?
I worked for decades for a large software company. We had about 25K regression test suites (each suite could contain from 1-5,000 tests). It normally took a half-a-day to run this for the mainline development and older versions. So mainline development runs were nightly and maintenance release runs for the prior version were slightly less frequent and maintenance release runs for older versions were weekly. We also had a number of major ports and those had to be run but those were often on different sets of hardware.
With each run, someone has to triage regressions and assign them to engineers to look at. This was manual and then eventually automated. This large a number of regression tests creates some level of false positives so someone has to look at these and just mark them as not a problem and then fix the test so that it doesn't happen again.
At any rate, running regressions consumes a ton of machine and engineering resources. I can see why Apple only supports two releases. If people actually pay for support of older releases - then that becomes a business line.
Yeah I heard about that. Though I didn’t actually install the (a) update in the first place. Apple pulled it away before I even got it.
Anyways I’m glad that the issue is now solved.
Hmm… those encouraging immediate, reflexive installation is almost the sort of thing those actively exploiting the patch would do… 😁
/s
Just kidding! I installed both without any issues — don't want to be open to active exploits.
OTOH, quite sympathetic to the “hold off” crowd as to iOS general releases because Apple's software updates often break things, remove features one has depended on, and ruin battery life, especially on older devices!
