Apple Security Advisory 2017-11-29-1 – An attacker may be able to bypass administrator authentication without supplying the administrator’s password. A logic error existed in the validation of credentials. This was addressed with improved credential validation. suffers from a bypass vulnerability.