Clean Install Beta MacOS 10.13.4 You’re now watching this thread and will receive emails when there’s activity. Click again to stop watching or visit your profile to manage your watched threads. Apr 25, 2018 Download the latest version of macOS 10.13.4 Supplemental Update for Mac - Recommended update for macOS 10.13.3 users. Read 13 user reviews of macOS 10.13.4 Supplemental Update on MacUpdate. Jun 01, 2018 Available for: macOS High Sierra 10.13.4. Impact: A local user may be able to read kernel memory. Description: An out-of-bounds read was addressed with improved input validation. CVE-2018-4256: shrekwzw of Qihoo 360 Nirvan Team. Entry added July 19, 2018. Available for: macOS High Sierra 10.13.4. Impact: A local user may be able to read. 1) Manually search for and download from the app store the full Mac OS High Sierra installer macOS High Sierra on the Mac App Store (This claims to be 10.13.4). 2) Run the installer to install this over the current working version of 10.13.3 (with supplemental update from March). About the security content of macOS High Sierra 10.13.3 Supplemental Update: macOS High Sierra 10.13.3 Supplemental: 17D2102 10.13.4 17E199 March 29, 2018 17.5.0 About the macOS High Sierra 10.13.4 Update About the security content of macOS High Sierra 10.13.4: macOS High Sierra 10.13.4 Update macOS High Sierra 10.13.4 Combo Update: 17E202.
About Apple security updates
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page.
For more information about security, see the Apple Product Security page. You can encrypt communications with Apple using the Apple Product Security PGP Key.
Apple security documents reference vulnerabilities by CVE-ID when possible.
Security Update 2018-001
Released April 24, 2018
Crash Reporter
Available for: macOS High Sierra 10.13.4
Impact: An application may be able to gain elevated privileges
Description: A memory corruption issue was addressed with improved error handling.
CVE-2018-4206: Ian Beer of Google Project Zero
Kernel
Available for: macOS High Sierra 10.13.4
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: In some circumstances, some operating systems may not expect or properly handle an Intel architecture debug exception after certain instructions. The issue appears to be from an undocumented side effect of the instructions. An attacker might utilize this exception handling to gain access to Ring 0 and access sensitive memory or control operating system processes.
CVE-2018-8897: Andy Lutomirski, Nick Peterson (linkedin.com/in/everdox) of Everdox Tech LLC
Entry added May 8, 2018
LinkPresentation
Available for: macOS High Sierra 10.13.4
Impact: Processing a maliciously crafted text message may lead to UI spoofing
Description: A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation.
CVE-2018-4187: Zhiyang Zeng (@Wester) of Tencent Security Platform Department, Roman Mueller (@faker_)
Installing Security Update 2018-001 updates Safari to version 11.1 (13605.1.33.1.4).
To check the version of Safari installed on your Mac:
Open Safari.
Choose Safari > About Safari.
If you use macOS with multiple displays and haven’t updated to 10.13.4 yet, you may want to avoid it depending on your system configuration. While the latest update has been praised for adding formal support for external AMD graphics (Nvidia is not officially supported), it appears to have come with a hell of a caveat — users of DisplayLink technologies and compatible monitors have found their ability to use these solutions sharply curtailed, at best. Other screen-extension tools appear to be affected as well.
DisplayLink is used to allow computers to run displays via USB technology. It’s deployed across a number of different products, and there are software solutions that leverage it in various ways, typically to extend or clone a Mac desktop. And as of macOS 10.13.4, none of those solutions seem to be working — or at least, they’re not working normally. As of this writing, the problem appears to be broader than just DisplayLink; programs like Duet Display, iDisplay, the Plugable Triple Display Docking Station and Air Display all appear to be semi-functional at best. It is not clear if all of these software products rely on DisplayLink, but all of them are having problems in the wake of the 10.13.4 update.
Duet display in action.
The problem appears to be this: As of 10.13.4, Apple has restricted GPU support to the ports that directly connect to the GPU. The team behind the Plugable Triple Dockstation writes:
If this product is being used with a Mac, we have important news about macOS 10.13.4. This new macOS release only supports displays which are directly provided by a GPU or via AirPlay.
For this dock, this means versions of Apple macOS after 10.13.3 will only support the single 4K HDMI port on the dock which uses DisplayPort Over USB-C technology (which is directly GPU connected). The second and third displays on the dock — the DVI and 2K HDMI ports using DisplayLink technology — will no longer function. Windows and Chromebook computers are not affected, and will continue to work as usual.
TAKE ACTION
To continue to use all dock functions with your Mac, macOS updates must be disabled to remain on 10.13.3.
That rationale has been picked up by other companies, though it’s not clear if Apple has formally confirmed it to anyone. Regardless, it’s a problem that was known to exist in the beta version of 10.13.4 and was not resolved before launch. It is not clear if Apple plans to resolve it at all.
Macos 10.13.4 Supplemental Updates
To be clear: This bug does not exist if you connect your laptop or desktop to a GPU-driven port like mini DisplayPort. It also shouldn’t impact any displays driven by Thunderbolt; Thunderbolt is an extension of the PCI Express protocol and any display plugged into a compatible Thunderbolt port should have no problem with external connectivity. But it’s clear from reading various comments in product forums that plenty of people have been blindsided by this change, with no solution from Apple in sight. A handful of products have managed to make a partial improvement by restoring the ability to clone a desktop, but a cloned desktop is not a replacement for an extended workspace.
Macos 10.15.4 Supplemental Update
There’s no word from Apple on whether a fix will be incoming.