About Apple security updates
As an old-brand cybersecurity software company, Avast Software acquired AVG Technologies for US$1.3 billion in 2016, and Piriform (the maker of CCleaner) in 2017. Its free antivirus solution on Mac platform called Free Mac Security has been released for a few years, and attracted many users to use it for protecting their Macs. Download Avast cleanup activation code 2017 full version. Advance anti-virus software with working licence key for PC, Mac, and for Android. Download Avast cleanup activation code 2017 full version. Advance anti-virus software with working licence key for PC, Mac, and for Android. Avast Security is a free antivirus that stops malware & finds Wi-Fi security weaknesses. Free Download! In order to view this page correctly, you must have a JavaScript-enabled browser.
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page.
For more information about security, see the Apple Product Security page. You can encrypt communications with Apple using the Apple Product Security PGP Key.
Apple security documents reference vulnerabilities by CVE-ID when possible.
macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan
Released December 6, 2017
APFS
How to remove adware with mcafee. Available for: macOS High Sierra 10.13.1
Impact: APFS encryption keys may not be securely deleted after hibernating
Description: A logic issue existed in APFS when deleting keys during hibernation. This was addressed with improved state management.
CVE-2017-13887: David Ryskalczyk
Entry added June 21, 2018
apache
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: Processing a maliciously crafted Apache configuration directive may result in the disclosure of process memory
Description: Multiple issues were addressed by updating to version 2.4.28.
CVE-2017-9798: Hanno Böck
Entry updated December 18, 2018
Auto Unlock
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to gain elevated privileges
Description: A race condition was addressed with additional validation.
CVE-2017-13905: Samuel Groß (@5aelo)
Entry added October 18, 2018
CFNetwork Session
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with system privileges
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2017-7172: Richard Zhu (fluorescence) working with Trend Micro's Zero Day Initiative
Entry added January 22, 2018
Contacts
Available for: macOS High Sierra 10.13.1
Impact: Sharing contact information may lead to unexpected data sharing
Description: An issue existed in the handling of Contact sharing. This issue was addressed with improved handling of user information.
CVE-2017-13892: Ryan Manly of Glenbrook High School District 225
Entry added October 18, 2018
CoreAnimation
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with elevated privileges
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2017-7171: 360 Security working with Trend Micro's Zero Day Initiative, and Tencent Keen Security Lab (@keen_lab) working with Trend Micro's Zero Day Initiative
Entry added January 22, 2018
CoreFoundation
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to gain elevated privileges
Description: A race condition was addressed with additional validation.
CVE-2017-7151: Samuel Groß (@5aelo)
Entry added October 18, 2018
curl
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: Malicious FTP servers may be able to cause the client to read out-of-bounds memory
Description: An out-of-bounds read issue existed in the FTP PWD response parsing. This issue was addressed with improved bounds checking.
CVE-2017-1000254: Max Dymond
Directory Utility
Available for: macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Not impacted: macOS Sierra 10.12.6 and earlier
Impact: An attacker may be able to bypass administrator authentication without supplying the administrator’s password
Description: A logic error existed in the validation of credentials. This was addressed with improved credential validation.
CVE-2017-13872
ICU
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to read restricted memory
Description: An integer overflow was addressed through improved input validation.
CVE-2017-15422: Yuan Deng of Ant-financial Light-Year Security Lab
Entry added March 14, 2018
Intel Graphics Driver
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2017-13883: Yu Wang of Didi Research America
CVE-2017-7163: Yu Wang of Didi Research America
CVE-2017-7155: Yu Wang of Didi Research America
Entry updated December 21, 2017
Intel Graphics Driver
Available for: macOS High Sierra 10.13.1
Impact: A local user may be able to cause unexpected system termination or read kernel memory
Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed through improved input validation.
CVE-2017-13878: Ian Beer of Google Project Zero
Intel Graphics Driver
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with system privileges
Description: An out-of-bounds read was addressed through improved bounds checking.
CVE-2017-13875: Ian Beer of Google Project Zero
IOAcceleratorFamily
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with system privileges
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2017-7159: found by IMF developed by HyungSeok Han (daramg.gift) of SoftSec, KAIST (softsec.kaist.ac.kr)
Entry updated December 21, 2017
When you try to use a Pro-only feature in the free antivirus, the product advises that you upgrade to the Avast Internet Security suite. During installation, Avast offers to install Google Chrome and to install the Google Toolbar in your other browsers. Currently, Avast is de-emphasizing the Pro product; it didn't get an upgrade with the rest of the product line. What is avast for mac.
IOKit
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with system privileges
Description: An input validation issue existed in the kernel. This issue was addressed through improved input validation.
CVE-2017-13848: Alex Plaskett of MWR InfoSecurity
CVE-2017-13858: an anonymous researcher
IOKit
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with system privileges
Description: Multiple memory corruption issues were addressed through improved state management.
CVE-2017-13847: Ian Beer of Google Project Zero
Avast antivirus and password for mac os x 10.6.8. Install Avast Passwords in PC using BlueStacks BlueStacks is an Android App Player that allows you to run Android apps on PC.
IOKit
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2017-7162: Tencent Keen Security Lab (@keen_lab) working with Trend Micro's Zero Day Initiative
Entry updated January 10, 2018
Kernel
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2017-13904: Kevin Backhouse of Semmle Ltd.
Entry added February 14, 2018
Kernel
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to read kernel memory (Meltdown)
Description: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
CVE-2017-5754: Jann Horn of Google Project Zero; Moritz Lipp of Graz University of Technology; Michael Schwarz of Graz University of Technology; Daniel Gruss of Graz University of Technology; Thomas Prescher of Cyberus Technology GmbH; Werner Haas of Cyberus Technology GmbH; Stefan Mangard of Graz University of Technology; Paul Kocher; Daniel Genkin of University of Pennsylvania and University of Maryland; Yuval Yarom of University of Adelaide and Data61; and Mike Hamburg of Rambus (Cryptography Research Division)
Entry updated January 5, 2018
Kernel
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2017-13862: Apple
CVE-2017-13867: Ian Beer of Google Project Zero
Entry updated December 21, 2017
Kernel
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to read restricted memory
Description: An out-of-bounds read was addressed with improved bounds checking.
CVE-2017-7173: Brandon Azad
Entry updated January 11, 2018
Kernel
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2017-13876: Ian Beer of Google Project Zero
Kernel
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to read restricted memory
Description: A type confusion issue was addressed with improved memory handling.
CVE-2017-13855: Jann Horn of Google Project Zero
Kernel
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to read restricted memory
Description: A validation issue was addressed with improved input sanitization.
CVE-2017-13865: Ian Beer of Google Project Zero
Kernel
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to read restricted memory
Description: A validation issue was addressed with improved input sanitization.
CVE-2017-13868: Brandon Azad
CVE-2017-13869: Jann Horn of Google Project Zero
Kernel
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: A local user may be able to cause unexpected system termination or read kernel memory
Description: An input validation issue existed in the kernel. This issue was addressed through improved input validation.
CVE-2017-7154: Jann Horn of Google Project Zero
Entry added December 21, 2017
Available for: macOS High Sierra 10.13.1
Impact: A S/MIME encrypted email may be inadvertently sent unencrypted if the receiver's S/MIME certificate is not installed
Description: An inconsistent user interface issue was addressed with improved state management.
CVE-2017-13871: Lukas Pitschl of GPGTools
Entry updated December 21, 2017
Mail Drafts
Available for: macOS High Sierra 10.13.1
Impact: An attacker with a privileged network position may be able to intercept mail
Description: An encryption issue existed with S/MIME credentials. The issue was addressed with additional checks and user control.
CVE-2017-13860: Michael Weishaar of INNEO Solutions GmbH
Entry updated January 10, 2018
OpenSSL
Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: An application may be able to read restricted memory
Description: An out-of-bounds read issue existed in X.509 IPAddressFamily parsing. This issue was addressed with improved bounds checking.
CVE-2017-3735: found by OSS-Fuzz
Perl
Available for: macOS Sierra 10.12.6
Impact: This bugs can allow remote attackers to cause a denial of service
Description: Public CVE-2017-12837 was addressed by updating the function in Perl 5.18
CVE-2017-12837: Jakub Wilk
Entry added October 18, 2018
Screen Sharing Server
Available for: macOS Sierra 10.12.6, macOS High Sierra 10.13.1
Impact: A user with screen sharing access may be able to access any file readable by root
Description: A permissions issue existed in the handling of screen sharing sessions. This issue was addressed with improved permissions handling.
CVE-2017-7158: Trevor Jacques of Toronto
Entry updated December 21, 2017
SIP
Available for: macOS High Sierra 10.13.1
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A configuration issue was addressed with additional restrictions.
CVE-2017-13911: Timothy Perfitt of Twocanoes Software
Entry updated August 8, 2018, updated September 25, 2018
Wi-Fi
Available for: macOS High Sierra 10.13.1
Impact: An unprivileged user may change WiFi system parameters leading to denial of service
Description: An access issue existed with privileged WiFi system configuration. This issue was addressed with additional restrictions.
CVE-2017-13886: David Kreitschmann and Matthias Schulz of Secure Mobile Networking Lab at TU Darmstadt
Entry added May 2, 2018
Download and installation
What are the system requirements for Avast Security?
The system requirements for Avast Security and Avast Premium Security are:
- Apple macOS 10.14.x (Mojave), Apple macOS 10.13.x (High Sierra), Apple macOS 10.12.x (Sierra), Apple Mac OS X 10.11.x (El Capitan), Apple Mac OS X 10.10.x (Yosemite).
- Intel based Mac computer with 64-bit processor.
- 512 MB RAM or above (1 GB RAM or higher preferred).
- 256 MB minimum hard disk free space.
- Internet connection (to download and register the product, for automatic updates of the program and virus database).
- Optimally standard screen resolution not less than 1024 x 768 pixels.
How do I download and install Avast Security?
To download and install Avast Security or Avast Premium Security:
- Click the link below to download the Avast Security setup file:
- Double-click the downloaded file
avast_security_online.dmg. - In the dialog that appears, double-click the Avast Security icon and follow the on-screen instructions.
- When installation is complete, click Close.
For detailed installation instructions, refer to the following article:
If you have purchased Avast Premium Security, activate your subscription by going to ☰ Menu ▸ Activate paid features and entering your activation code.
Do I need a subscription to use Avast Security?
No, a subscription is not necessary for the free version of Avast Security. After installation, Avast Security is ready to use. You can connect Avast Security to your Avast Account to benefit from the device management feature.
For additional features, upgrade to a paid subscription of Avast Premium Security. You must activate this product with a valid activation code.
How do I upgrade from Avast Security to Avast Premium Security?
To upgrade to Avast Premium Security:
- In your Applications folder, double-click the Avast icon to open the application.
- Click Upgrade on the main Avast Security screen.
- Follow the on-screen purchase instructions.
After purchase, Avast Premium Security automatically activates. If necessary, you can manually activate the product by going to ☰ Menu ▸ Activate paid features and entering your activation code.
How do I activate Avast Premium Security?
To manually activate Avast Premium Security:
- Open the order confirmation email you received after purchasing Avast Premium Security.
- Locate and copy the activation code from the confirmation email.
- In your Applications folder, double-click the Avast icon to open the application.
- Go to ☰ Menu ▸ Activate paid features.
- Type or paste your activation code into the text box, then click Activate.
To view the duration of your subscription, go to ☰ Menu ▸ My subscriptions. For detailed activation instructions, refer to the following article:
How do I connect Avast Security to my Avast Account?
After you download and install Avast Security, you can connect the product to your Avast Account to benefit from the device management feature.
To connect Avast Security to your Avast Account:
- In your Applications folder, double-click the Avast icon to open the application.
- Go to ☰ Menu ▸ Log in to Avast account.
- Enter your Avast Account credentials, then click Log In.
For detailed instructions, refer to the following article:
What is the difference between Avast Security and Avast Premium Security?
Avast Security is a free product that does not require a paid subscription to use.
Avast Premium Security includes additional features and requires a paid subscription. The additional features include Ransomware Shield and Wi-Fi Inspector.
Features
What is File Shield?
File Shield is the main layer of active protection in Avast Security. It scans programs and files saved on your Mac for malicious threats in real-time before allowing them to be opened, run, modified, or saved. If malware is detected, File Shield prevents the program or file from infecting your Mac.
What is Web Shield?
Web Shield is an additional layer of active protection in Avast Security. It scans data that is transferred when you browse the internet in real-time to prevent malware, such as malicious scripts, from being downloaded and run on your Mac.
What is Email Shield?
Email Shield is an additional layer of active protection in Avast Security. It scans your incoming and outgoing email messages in real-time for malicious content such as viruses. Scanning applies only to messages sent or received using a mail management software (email clients, such as Mail, Microsoft Outlook or Mozilla Thunderbird). If you access your web based email account via an internet browser, your Mac is protected by other Avast Security shields.
What is Ransomware Shield?
Ransomware Shield, available in Avast Premium Security, secures your personal photos, documents, and files from being modified, deleted, or encrypted by ransomware attacks. This feature automatically secures your Pictures and Documents folders and allows you to specify which other folders you want to protect from untrusted applications. Additionally, you can specify which applications are allowed to modify the files in your protected folders.
What is Wi-Fi Inspector?
Wi-Fi Inspector, available in Avast Premium Security, is an active protection component which continuously monitors your network and connected devices for threats.
What is the Virus Chest?
The Virus Chest is a safe place for storing potentially harmful files, completely isolated from the rest of the operating system. Files inside the Virus Chest are not accessible to any outside process, software application, or virus.
For more information about the Virus Chest including how to send files to the Avast Threat Labs, refer to the following article:
How do I run a scan?
To run an Avast Security scan:
- In your Applications folder, double-click the Avast icon to open the application.
- Click
…(three dots) next to Run Mac Scan. - Click Run Mac Scan or Scan Now on the tile of the scan you want to run.
You can run a quick scan of the most vulnerable areas of your Mac, or a thorough scan of the whole system, or quickly scan a particular folder or removable drive, or create and schedule your own scans.
For more information about each type of scan as well as scan settings, refer to the following article:
General settings
How do I check which version of Avast Security is installed?
To check which version of Avast Security is installed on your Mac, go to ☰ Menu ▸ Settings and select the General tab. The version number is displayed at the top of the screen.
How do I exclude files or websites from scanning by the Core Shields?
To set an exclusion for a Core Shield:
- In your Applications folder, double-click the Avast icon to open the application.
- Go to ☰ Menu ▸ Settings and select the Core Shields tab.
- Click Add Exceptions under the shield you want to set an exclusion for.
- If you are adding an exclusion for File Shield, select the file and click Open. For Web Shield and Email Shield, specify the server and service, then click Add.
For detailed instructions on how to set exclusions for Core Shields, refer to the following article:
How do I exclude files or folders from the pre-defined scans?
To set an exclusion for one of the pre-defined scans:
- In your Applications folder, double-click the Avast icon to open the application.
- Go to ☰ Menu ▸ Settings and select the Scans tab.
- Click Add Exceptions under the scan you want to set an exclusion for.
- Select a file or folder, then click Open.
For detailed instructions on how to set exclusions for the pre-defined scans, refer to the following article:
Troubleshooting
What does the status message 'Unable to scan' mean in scan results?
The status message 'Unable to scan' means that the file could not be scanned, possibly due to an encrypted ZIP archive or because the files are currently in use. The status does not mean that there is anything wrong with the file, only that it is not available for scanning.
What does the status message 'You are in passive mode' mean?
If you see the status You are in passive mode, you need to manually allow Avast Software extensions on your Mac. For detailed instructions, refer to the following article:
What should I do if I'm unable to browse the web or use other software on my Mac?
Avast Security shields detect and block suspicious files, dangerous websites, and unauthorized connections. In some cases, a Core Shield may cause connectivity issues. If you are unable to use online software or browse certain sites, use the troubleshooting steps below to determine if a shield is causing the issue:
- In your Applications folder, double-click the Avast icon to open the application.
- Click Core Shields.
- Click the ON (green) slider above File Shield and perform your original action (for example, if you were unable to access a certain site, try to access the site again).
- If the connectivity issue persists, click the OFF (red) slider to turn the shield on again, then repeat the above steps for each shield.
When you determine which shield is causing the connectivity issue, you can set an exclusion for a certain file, site, or mail server by using the steps in the following article:
How do I uninstall Avast Security?
Avast Security cannot be fully uninstalled by dragging the application to the Trash. To uninstall Avast Security:
- In your Applications folder, double-click the Avast icon to open the application.
- Click Avast in the menu bar, then select Uninstall Avast Security from the context menu.
- Click Uninstall.
For detailed uninstallation instructions, refer to the following article:
- Avast Security 14.x for Mac
- Avast Premium Security 14.x for Mac
- Apple macOS 10.14.x (Mojave)
- Apple macOS 10.13.x (High Sierra)
- Apple macOS 10.12.x (Sierra)
- Apple Mac OS X 10.11.x (El Capitan)
- Apple Mac OS X 10.10.x (Yosemite)