Categories: Tech

After the last fix was circumvented, Zoom updates a major vulnerability.

A MacOS security expert was able to go around the fix that was just released over the weekend.

 

Zoom Mac users need to upgrade once more.

This week, Zoom corrected a flaw in its Mac auto-update tool that might grant malicious users root access. On Wednesday, Zoom released a follow-up patch, indicating that the initial repair may have been circumvented.

Users of Zoom should install and utilise the August 17-released version 5.11.6 (9890) on macOS. For updates, you can also look at Zoom’s menu bar. If you wait for an automatic update while this issue is known to the public, you might have to wait days.

Csaba Fitzl, also known as theevilbit of Offensive Security, a macOS security researcher, disclosed Zoom’s insufficient remedy. The day before Fitzl tweeted about it, Zoom acknowledged Fitzl in its security bulletin (ZSB-22019) and released a patch.

 

 

Neither Fitzl nor Zoom explained how Fitzl was able to get around the patch for the flaw that Patrick Wardle, the creator of the Objective-See Foundation, first identified. Wardle discussed Zoom’s auto-update utility’s ability to maintain its privileged status to install Zoom packages yet be deceived into checking other packages at Def Con last week. As a result, bad actors might utilise it to degrade Zoom in order to improve their access to the system’s exploits or even to acquire root access.

Himanshu Mahawar

Himanshu Mahawar is the Editor and Founder at Flaunt Weekly.

Share
Published by
Himanshu Mahawar
Tags: ZoomZoom Mac

Recent Posts

Three Years Later, Universal Music Settles Trademark Lawsuit Filed Against Investment Platform Republic

Flaunt Weeekly Flaunt Weeekly More than three years later, Universal Music Group (UMG) and the…

54 mins ago

Haiti’s budding musicians hold concert amid ongoing gang violence

Flaunt Weeekly Around the world, it’s time for year-end school concerts and Haiti is no…

3 hours ago

Review: Ada Pasternak gets personal and deep in her ‘I Wish I Never’ music video

Flaunt Weeekly There was Pasternak. Photo Courtesy of Ada Pasternak.Singer-songwriter and multi-instrumentalist Ada Pasternak released…

3 hours ago

‘His death is a great loss’ – President Higgins pays touching tribute to Irish music star’s father after tragic passing

Flaunt Weeekly PRESIDENT Michael D Higgins has paid tribute to the father of a member…

9 hours ago

Hozier Plays the Pogues’ “Fairytale of New York” on Saturday Night Live: Watch

Flaunt Weeekly Hozier returned to Saturday Night Live for the NBC program’s final pre-Christmas episode…

10 hours ago

Our Favourite Queer Artists Made Billboard’s 2024 Top Pop Stars List

Flaunt Weeekly Chappell Roan, Charli xcx and Billie Eilish have all made Billboard’s 10 Greatest…

10 hours ago