December 8, 2023 at 12:33PM
Summary:
Apple ID HT214042, released on 2023-11-06, addresses CVE-2023-42867 by improving process entitlement and Team ID validation. The issue could allow an app to gain root privileges in GarageBand. Updates are available for macOS Ventura and macOS Sonoma.
Based on the meeting notes:
Issue: CVE-2023-42867
Description: Improved validation of process entitlement and Team ID to address the issue of an app potentially gaining root privileges.
Affected Product: GarageBand
Update Available for: macOS Ventura and macOS Sonoma
Apple ID for reference: HT214042
Release Date of the update: 2023-11-06