HT207130: About the security content of Security Update 2016-001 El Capitan and Security Update 2016-005 Yosemite

Learn about About the security content of Security Update 2016-001 El Capitan and Security Update 2016-005 Yosemite

olive122

Level 1 (4 points)

Mac OS X

Q: Security Update 2016-001 - How much does it fix exactly?

I've read that it will block these kernel infections in the future, but already infected kernels will be left as-is and undetected, is it true? Either way, is it possible to detect whether our machines were infected?

MacBook Pro (Retina, 15-inch, Mid 2014), OS X El Capitan (10.11.6)

Posted on Sep 5, 2016 1:48 AM

I have this question too

Q: Security Update 2016-001 - How much does it fix exactly?

All replies

Helpful answers

by John Lockwood,

John Lockwood Sep 6, 2016 2:21 AM in response to olive122
Level 6 (9,195 points)

Servers Enterprise

Sep 6, 2016 2:21 AM in response to olive122

See - About the security content of Security Update 2016-001 El Capitan and Security Update 2016-005 Yosemite

The two issues covered by this security update are instances whereby an application can run code which can cause the Kernel to disclose information that it should not, or to then be able to run further code with elevated privileges and therefore the ability to do more bad stuff.

Neither issue involves any code including the Kernel being 'infected'.

The hypothetical applications would typically have been downloaded from the Internet or copied from a memory stick or email. There is no indication that any real-world examples that exploit these two issues actually exist.
Reply options

Link to this post

HT207130: About the security content of Security Update 2016-001 El Capitan and Security Update 2016-005 Yosemite

Q: Security Update 2016-001 - How much does it fix exactly?

All replies Helpful answers

by John Lockwood,

All replies

Helpful answers