macOS High Sierra 'root' security bug: Here's how to fix it now!Apple has patched a critical flaw has been discovered in macOS High Sierra that let an attacker log in as 'root' by leaving the password field blank and trying multiple times in a row.
Apple has just released a security update for macOS High Sierra that patches the "root" vulnerability dropped yesterday. While this bug should never have shipped, Apple's response to the problem and turn around time on the fix have been impressive and reassuring.
Apple sent me the following statement:
"Security is a top priority for every Apple product, and regrettably we stumbled with this release of macOS," an Apple spokesperson told iMore.
When our security engineers became aware of the issue Tuesday afternoon, we immediately began working on an update that closes the security hole. This morning, as of 8:00 a.m., the update is available for download, and starting later today it will be automatically installed on all systems running the latest version (10.13.1) of macOS High Sierra.
...
Source:
macOS High Sierra 'root' security bug: Here's how to fix it now!
