Menu
Security Updates 2020-004 for macOS Mojave 10.14 (18G6020) & High Sierra 10.13 (17G14019) are now Available.
Global Nav Open Menu Global Nav Close Menu; Apple; Shopping Bag +. This document describes the security content of macOS Mojave 10.14.6 Supplemental Update 2, Security Update 2019-005 High Sierra, and Security Update 2019-005 Sierra. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases.
Today, Apple released macOS Mojave Security Update 2020-004 and High Sierra Security Update 2020-004. Below you will find Build Versions, Download Links, Update Sizes and previous Security Update Links. MacOS Sierra is no longer supported by Apple for Security Updates.
Apple listened to us! The 2020-004 Update reverts the 2020-003 changes made to the –ignore flag. After installing the update, you can now ignore major upgrades again.
After installing 2020-004 on 10.14 & 10.13 you can once again block major upgrades (Catalina). I mentioned this change in my Catalina 10.15.6 Patch Notes Article.
NOTE: This change is ONLY for UAMDM (User Approved Mobile Device Management) and Supervised Macs. If your Mac is not Supervised or part of an UAMDM you will not be able to ignore major updates.
In macOS Big Sur
softwareupdate --ignore
is deprecated and no longer works. You will only be able to block minor and major updates for 90 days using MDM.Please file feedback NOW, if you need the ability to block minor & major updates in macOS Big Sur!Thanks for the clarification @mboylan!I previously wrote about the situation here – mrmacintosh.com/10-15-5-2020-003-updates-changes-to-softwareupdate-ignore/
You can read up more on what happened below.
How do I keep track of all the macOS Build Versions?
I document all of the macOS Build Versions like the latest Mojave 2020-004 High Sierra 2020-004 along with most Apple Applications, XProtect, Gatekeeper and MRT updates in one database. You can check out the link below.
MacOS Mojave Security Update 2020-004 (18G6020)
- macOS Mojave Security Update 2020-004
- Size = 1.67 GB
- Package Download and Information Link
Information on the Security fixes included in the 2020-004 Mojave Security Update
MacOS High Sierra Security Update 2020-004 (17G14019)
- 10.13.6 High Sierra Security Update 2020-004
- Size = 2.1 GB
- Package Download and Information Link
Information on the Security fixes included in the 2020-004 High Sierra Security Update
Safari Update
Safari was updated to version 13.1.2
Download Size for High Sierra = 66.2mb
Downloads Size for Mojave = 70.6mb
T2 BridgeOS Update
Both the 2020-004 and 2020-004 Security Updates upgrade BridgeOS to version – 17.16.16065
Previous version = 17.16.15290
Security Content for Safari 13.1.2
Previous Releases
- 1. Security Updates 07/15/20 10.14.6 Mojave (18G6020) & 10.13 (2020-004)
- 2. Security Updates 05/26/20 10.14.6 Mojave (18G5033) & 10.13 (2020-003)
- 3. Security Updates 03/24/20 10.14.6 Mojave (18G4032) & 10.13 (2020-002)
- 4. Security Updates 01/28/20 10.14.6 Mojave (18G3020) & 10.13 (2020-001)
- 5. Security Updates 12/10/19 10.14.6 Mojave (2019-002) & 10.13 (2019-007)
- 6. Security Updates 10/31/19 10.14.6 Mojave (2019-001) & 10.13 (2019-006)
- 7. Security Updates 9/26/19 10.14.6 Mojave (18G103) 10.13 & 10.12 (2019-005)
- 8. Security Updates 7/22/19 10.14.6 Mojave (18G84) 10.13 & 10.12 (2019-004)
- 9. Security Updates 5/13/19 10.14.5 Mojave (18F132) 10.13. & 10.12 (2019-003)
- 10. Security Updates 3/25/19 10.14.4 Mojave (18E226) 10.13 & 10.12 (2019-002)
Security Related Content for 2020-004
This security update has only 2 “Public” fixes. (some fixes are released later)
CoreAudio
Available for: macOS High Sierra 10.13.6
Impact: A buffer overflow may result in arbitrary code execution
Description: A buffer overflow was addressed with improved bounds checking.
CVE-2020-9866: Yu Zhou of 小鸡帮 and Jundong Xie of Ant-financial Light-Year Security Lab
Vim
Available for: macOS High Sierra 10.13.6, macOS Mojave 10.14.6
Security Update 2020-005 For Mojave 10.14 & High Sierra 10.13 ...
Impact: A remote attacker may be able to cause arbitrary code execution
Mac Update 10.14.6
Description: This issue was addressed with improved checks.
CVE-2019-20807: Guilherme de Almeida Suckevicz
Security Update 2020-003 Will Not Update …
Security Updates 2020-004 Mojave