Amid last week’s slew of updates, Apple released something you might definitely need in the form of the macOS Catalina 10.15.7 supplemental updates, which includes the following fixes and changes:
FontParser
- Available for: macOS Catalina 10.15.7
- Impact: Processing a maliciously crafted font may lead to arbitrary code execution. Apple is aware of reports that an exploit for this issue exists in the wild.
- Description: A memory corruption issue was addressed with improved input validation.
- CVE-2020-27930: Google Project Zero
Kernel
- Available for: macOS Catalina 10.15.7
- Impact: A malicious application may be able to execute arbitrary code with kernel privileges. Apple is aware of reports that an exploit for this issue exists in the wild.
- Description: A type confusion issue was addressed with improved state handling.
- CVE-2020-27932: Google Project Zero
Kernel
- Available for: macOS Catalina 10.15.7
- Impact: A malicious application may be able to disclose kernel memory. Apple is aware of reports that an exploit for this issue exists in the wild.
- Description: A memory initialization issue was addressed.
- CVE-2020-27950: Google Project Zero
This also seems to have resolved the ongoing issue between macOS Catalina 10.15.7 and HP’s batch of printer drivers, which the operating system was cataloging as malware and a security risk.
You can locate, download, and install the update via the System Preferences -> Software Update app on your Mac.
If you’ve had a chance to try the update and have any feedback to offer, please let us know about your experience in the comments.
Via 9to5Mac