Apple
has released
macOS Sonoma
14.2.1 and iOS 17.2.1 updates. The update for MacBook includes a patch for a vulnerability that may show windows that were thought to be hidden while screen sharing.
It has started to roll out to all users and the members of the TOI Tech-Gadgets Now team have also got the update.
“This update provides important bug fixes and security updates and is recommended for all users,” the description says.
Apple has also shared a general description of the flaw and fix in a post on its Security Updates page:
Impact: A user who shares their screen may unintentionally share the incorrect content
Description: A session rendering issue was addressed with improved session tracking.
What is the issue
The bug was first discovered and reported to Apple in the middle of November. The person who spotted the bug said in a post on Mastodon that users should refrain from using Screen Sharing in macOS Sonoma 14.2.
Pro tip: Don’t use Screen Sharing in macOS Sonoma 14.2.
It shares random windows in other Spaces with whoever is on the other end of the line. If you think your desktop is completely empty, it isn’t.
As you can see below, this could range from embarrassment to leaking private data.
I reported this about a month ago (FB13398611) and can’t believed it shipped. Same with the window manager bug in 14.1. I liked macOS better when point releases weren’t full of breaking changes without workarounds.
No CVE entries were included with iOS 17.2.1 and iOS 16.7.4 that launched today. Additionally, there were no other Mac updates for those running Ventura or earlier. This means that the flaw is likely limited to macOS Sonoma.