메뉴
HN
Hacker News 5일 전

앤플, AI로 macOS 타호 보안 취약점 대거 수정

IMP
9/10
핵심 요약

2026년 5월 11일, 애플은 macOS Tahoe 26.5 업데이트를 통해 다수의 보안 취약점을 수정했습니다. 특히 이번 업데이트에는 AI 모델인 클로드(Claude)가 발견한 커널 취약점을 비롯해 샌드박스 탈출, 권한 상승, 시스템 종료 유발 등 고위험군 결함들이 포함되어 있어 실무자들에게 매우 중요한 보안 패치입니다.

번역된 본문

macOS Tahoe 26.5의 보안 콘텐츠에 관하여 이 문서는 macOS Tahoe 26.5의 보안 콘텐츠에 대해 설명합니다.

애플 보안 업데이트 정보 고객 보호를 위해 애플은 조사가 완료되고 패치 또는 새 버전이 제공될 때까지 보안 문제를 공개, 논의 또는 확인하지 않습니다. 최신 릴리스는 애플 보안 릴리스 페이지에서 확인할 수 있습니다. 애플 보안 문서는 가능한 경우 CVE-ID를 사용하여 취약점을 참조합니다. 보안에 대한 자세한 내용은 애플 제품 보안 페이지를 참조하십시오.

macOS Tahoe 26.5 (2026년 5월 11일 릴리스)

  • Accelerate (가능한 버전: macOS Tahoe) 영향: 악성 앱이 서비스 거부(DoS)를 유발할 수 있음 설명: 향상된 경계 확인으로 Out-of-bounds read 문제가 해결됨 CVE-2026-28991: Seiji Sakurai (@HeapSmasher)

  • Accounts (가능한 버전: macOS Tahoe) 영향: 악성 앱이 특정 개인정보 보호 기본 설정을 우회할 수 있음 설명: 추가적인 제한을 통해 권한 문제가 해결됨 CVE-2026-28988: Asaf Cohen

  • APFS (가능한 버전: macOS Tahoe) 영향: 악성 앱이 예기치 않은 시스템 종료를 유발할 수 있음 설명: 향상된 경계 확인으로 버퍼 오버플로우(Buffer overflow) 문제가 해결됨 CVE-2026-28959: Dave G.

  • App Intents (가능한 버전: macOS Tahoe) 영향: 악성 앱이 자신의 샌드박스에서 탈출할 수 있음 설명: 향상된 제한을 통해 논리적 문제가 해결됨 CVE-2026-28995: Vamshi Paili, Tony Gorez (@tonygo_) for Reverse Society

  • AppleJPEG (가능한 버전: macOS Tahoe) 영향: 악의적으로 조작된 이미지를 처리할 때 서비스 거부(DoS)가 발생할 수 있음 설명: 이 문제는 오픈 소스 코드의 취약점이며 애플 소프트웨어도 영향을 받는 프로젝트 중 하나임. 이 CVE-ID는 제3자에 의해 할당되었음. 문제 및 CVE-ID에 대한 자세한 내용은 cve.org에서 확인 가능함. CVE-2026-1837

  • AppleJPEG (가능한 버전: macOS Tahoe) 영향: 악의적으로 조작된 미디어 파일을 처리할 때 예기치 않은 앱 종료나 프로세스 메모리 손상이 발생할 수 있음 설명: 향상된 입력 유효성 검사를 통해 메모리 손상 문제가 해결됨 CVE-2026-28956: impost0r (ret2plt)

  • Audio (가능한 버전: macOS Tahoe) 영향: 악의적으로 조작된 미디어 파일의 오디오 스트림을 처리할 때 프로세스가 종료될 수 있음 설명: 향상된 메모리 처리를 통해 문제가 해결됨 CVE-2026-39869: David Ige of BerylliumSecurity

  • CoreMedia (가능한 버전: macOS Tahoe) 영향: 악성 앱이 개인 정보에 접근할 수 있음 설명: 향상된 상태 관리를 통해 문제가 해결됨 CVE-2026-28922: Arni Hardarson

  • CoreServices (가능한 버전: macOS Tahoe) 영향: 악의적으로 조작된 파일을 처리할 때 예기치 않은 앱 종료가 발생할 수 있음 설명: 향상된 검사를 통해 문제가 해결됨 CVE-2026-28936: Andreas Jaegersberger & Ro Achterberg of Nosebeard Labs

  • CoreSymbolication (가능한 버전: macOS Tahoe) 영향: 악의적으로 조작된 파일을 파싱할 때 예기치 않은 앱 종료가 발생할 수 있음 설명: 향상된 경계 확인으로 Out-of-bounds access 문제가 해결됨 CVE-2026-28918: Niels Hofmans, 익명 (TrendAI Zero Day Initiative와 협력)

  • CUPS (가능한 버전: macOS Tahoe) 영향: 악성 앱이 루트(Root) 권한을 획득할 수 있음 설명: 향상된 경로 유효성 검사를 통해 디렉토리 경로 처리의 파싱 문제가 해결됨 CVE-2026-28915: Andreas Jaegersberger & Ro Achterberg of Nosebeard Labs

  • FileProvider (가능한 버전: macOS Tahoe) 영향: 악성 앱이 민감한 사용자 데이터에 접근할 수 있음 설명: 추가적인 유효성 검사를 통해 레이스 컨디션(Race condition) 문제가 해결됨 CVE-2026-43659: Alex Radocea

  • GPU Drivers (가능한 버전: macOS Tahoe) 영향: 악성 앱이 자신의 샌드박스에서 탈출할 수 있음 설명: 향상된 데이터 삭제(Redaction) 처리를 통해 로깅 문제가 해결됨 CVE-2026-28923: Kun Peeks (@SwayZGl1tZyyy)

  • HFS (가능한 버전: macOS Tahoe) 영향: 악성 앱이 예기치 않은 시스템 종료를 유발하거나 커널 메모리에 쓸 수 있음 설명: 향상된 경계 확인으로 버퍼 오버플로우(Buffer overflow) 문제가 해결됨 CVE-2026-28925: Aswin Kumar Gokula Kannan, Dave G.

원문 보기
원문 보기 (영어)
About the security content of macOS Tahoe 26.5 This document describes the security content of macOS Tahoe 26.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security releases page. Apple security documents reference vulnerabilities by CVE-ID when possible. For more information about security, see the Apple Product Security page. macOS Tahoe 26.5 Released May 11, 2026 Accelerate Available for: macOS Tahoe Impact: An app may be able to cause a denial-of-service Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2026-28991: Seiji Sakurai (@HeapSmasher) Accounts Available for: macOS Tahoe Impact: An app may be able to bypass certain Privacy preferences Description: A permissions issue was addressed with additional restrictions. CVE-2026-28988: Asaf Cohen APFS Available for: macOS Tahoe Impact: An app may be able to cause unexpected system termination Description: A buffer overflow was addressed with improved bounds checking. CVE-2026-28959: Dave G. App Intents Available for: macOS Tahoe Impact: A malicious app may be able to break out of its sandbox Description: A logic issue was addressed with improved restrictions. CVE-2026-28995: Vamshi Paili, Tony Gorez (@tonygo_) for Reverse Society AppleJPEG Available for: macOS Tahoe Impact: Processing a maliciously crafted image may lead to a denial-of-service Description: This is a vulnerability in open source code and Apple Software is among the affected projects. The CVE-ID was assigned by a third party. Learn more about the issue and CVE-ID at cve.org . CVE-2026-1837 AppleJPEG Available for: macOS Tahoe Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: A memory corruption issue was addressed with improved input validation. CVE-2026-28956: impost0r (ret2plt) Audio Available for: macOS Tahoe Impact: Processing an audio stream in a maliciously crafted media file may terminate the process Description: The issue was addressed with improved memory handling. CVE-2026-39869: David Ige of Beryllium Security CoreMedia Available for: macOS Tahoe Impact: An app may be able to access private information Description: This issue was addressed through improved state management. CVE-2026-28922: Arni Hardarson CoreServices Available for: macOS Tahoe Impact: Processing a maliciously crafted file may lead to unexpected app termination Description: The issue was addressed with improved checks. CVE-2026-28936: Andreas Jaegersberger & Ro Achterberg of Nosebeard Labs CoreSymbolication Available for: macOS Tahoe Impact: Parsing a maliciously crafted file may lead to an unexpected app termination Description: An out-of-bounds access issue was addressed with improved bounds checking. CVE-2026-28918: Niels Hofmans, Anonymous working with TrendAI Zero Day Initiative CUPS Available for: macOS Tahoe Impact: An app may be able to gain root privileges Description: A parsing issue in the handling of directory paths was addressed with improved path validation. CVE-2026-28915: Andreas Jaegersberger & Ro Achterberg of Nosebeard Labs FileProvider Available for: macOS Tahoe Impact: An app may be able to access sensitive user data Description: A race condition was addressed with additional validation. CVE-2026-43659: Alex Radocea GPU Drivers Available for: macOS Tahoe Impact: A malicious app may be able to break out of its sandbox Description: A logging issue was addressed with improved data redaction. CVE-2026-28923: Kun Peeks (@SwayZGl1tZyyy) HFS Available for: macOS Tahoe Impact: An app may be able to cause unexpected system termination or write kernel memory Description: A buffer overflow was addressed with improved bounds checking. CVE-2026-28925: Aswin Kumar Gokula Kannan, Dave G. ImageIO Available for: macOS Tahoe Impact: Processing a maliciously crafted image may corrupt process memory Description: A buffer overflow issue was addressed with improved memory handling. CVE-2026-43661: an anonymous researcher ImageIO Available for: macOS Tahoe Impact: Processing a maliciously crafted file may lead to unexpected app termination Description: The issue was addressed with improved bounds checks. CVE-2026-28977: Suresh Sundaram ImageIO Available for: macOS Tahoe Impact: Processing a maliciously crafted image may corrupt process memory Description: The issue was addressed with improved memory handling. CVE-2026-28990: Jiri Ha, Arni Hardarson Installer Available for: macOS Tahoe Impact: A malicious app may be able to break out of its sandbox Description: A permissions issue was addressed with additional restrictions. CVE-2026-28978: wdszzml and Atuin Automated Vulnerability Discovery Engine IOHIDFamily Available for: macOS Tahoe Impact: An attacker may be able to cause unexpected app termination Description: A memory corruption vulnerability was addressed with improved locking. CVE-2026-28992: Johnny Franks (@zeroxjf) IOHIDFamily Available for: macOS Tahoe Impact: An app may be able to determine kernel memory layout Description: A logging issue was addressed with improved data redaction. CVE-2026-28943: Google Threat Analysis Group IOKit Available for: macOS Tahoe Impact: An app may be able to cause unexpected system termination Description: A use after free issue was addressed with improved memory management. CVE-2026-28969: Mihalis Haatainen, Ari Hawking, Ashish Kunwar IOSurfaceAccelerator Available for: macOS Tahoe Impact: An app may be able to cause unexpected system termination or read kernel memory Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2026-43655: Somair Ansar and an anonymous researcher Kernel Available for: macOS Tahoe Impact: An app may be able to disclose kernel memory Description: The issue was addressed with improved memory handling. CVE-2026-43654: Vaagn Vardanian, Nathaniel Oh (@calysteon) Kernel Available for: macOS Tahoe Impact: An app may be able to modify protected parts of the file system Description: A denial of service issue was addressed by removing the vulnerable code. CVE-2026-28908: beist Kernel Available for: macOS Tahoe Impact: A maliciously crafted disk image may bypass Gatekeeper checks Description: A file quarantine bypass was addressed with additional checks. CVE-2026-28954: Yiğit Can YILMAZ (@yilmazcanyigit) Kernel Available for: macOS Tahoe Impact: A local user may be able to cause unexpected system termination or read kernel memory Description: A buffer overflow was addressed with improved input validation. CVE-2026-28897: popku1337, Billy Jheng Bing Jhong and Pan Zhenpeng (@Peterpan0927) of STAR Labs SG Pte. Ltd., Robert Tran, Aswin kumar Gokulakannan Kernel Available for: macOS Tahoe Impact: An app may be able to cause unexpected system termination Description: An integer overflow was addressed with improved input validation. CVE-2026-28952: Calif.io in collaboration with Claude and Anthropic Research Kernel Available for: macOS Tahoe Impact: An app may be able to gain root privileges Description: An authorization issue was addressed with improved state management. CVE-2026-28951: Csaba Fitzl (@theevilbit) of Iru Kernel Available for: macOS Tahoe Impact: An app may be able to cause unexpected system termination or write kernel memory Description: An out-of-bounds write issue was addressed with improved input validation. CVE-2026-28972: Billy Jheng Bing Jhong and Pan Zhenpeng (@Peterpan0927) of STAR Labs SG Pte. Ltd., Ryan Hileman via Xint Code (xint.io) Kernel Available for: macOS Tahoe Impact: An app may be able to cause unexpected system termination Description: A race condition was addressed with additional validation. CVE-2026-28986: Chris Betz, Tristan Madani (@TristanInSec) from Talence Security, Ryan Hileman via Xint Code (xint.io) Kernel Available for: macOS Taho
보안 취약점 macOS 업데이트 CVE 패치 클로드(Claude) AI 보안