Peerke

macplusplus said:

Peerke said:

Call me a noob, but it looks like the specific Meltdown issue id, CVE-2017-5754 is only mentioned in the release notes of the Apple security update for High Sierra, not Sierra or El Capitan?

It is available for Sierra and El Capitan:
https://support.apple.com/en-us/HT208331

Kernel

Available for: macOS High Sierra 10.13.1, macOS Sierra 10.12.6, OS X El Capitan 10.11.6

Impact: An application may be able to read kernel memory

Description: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.

CVE-2017-5754: Jann Horn of Google Project Zero, Werner Haas and Thomas Prescher of Cyberus Technology GmbH, and Daniel Gruss, Moritz Lipp, Stefan Mangard and Michael Schwarz from Graz University of Technology

If I follow your link, I get this:

Kernel

Available for: macOS High Sierra 10.13.1

Impact: An application may be able to read kernel memory

Description: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.

CVE-2017-5754: Jann Horn of Google Project Zero, Werner Haas and Thomas Prescher of Cyberus Technology GmbH, and Daniel Gruss, Moritz Lipp, Stefan Mangard and Michael Schwarz from Graz University of Technology

Entry updated January 5, 2018

No Sierra, no El Capitan mentioned.

Call me a noob, but it looks like the specific Meltdown issue id, CVE-2017-5754 is only mentioned in the release notes of the Apple security update for High Sierra, not Sierra or El Capitan?