Yes, but if you’re using it for business use. You would want to update an already stable operating system. Don’t upgrade to a fresh new os where even more problems can arise. This advice is only for business use case. Once again if it’s not broke, don’t fix it.
Well, your advice is right for other operating systems. For Apple, such a statement is critical.
For serious Linux distributions and for Windows, you get a commitment from the manufacturer to support legacy versions and you also get security updates accordingly. You don't get that with Apple. Or where do you find a clear roadmap at Apple, like at Redhat (1) or Microsoft etc.? You won't find any promises at Apple. Apple is more like a toy company or lifestyle company when it comes to Macs.
With Apple, you have to make a choice: Security updates or stability (=> **) of the old system. With others, you have both.
This is a topic for vulnerability management, patch management and risk management in a company.
(**) You can also risk data loss, like in the past, when the Apple Filesystem APFS had a serious Bug and the needed update received just the new macOS-Version. There were people who were affected.
"As I wrote there: “APFS is but one example of a critical sub-system that loses all support once Apple releases a new version of macOS.”
"One of the great reliefs of upgrading from High Sierra was moving away from the early bugs in APFS. It didn’t even support Fusion Drives because of its bugs!"
Using version numbers, it’s possible to track changes in critical sub-systems like APFS within macOS. According to those, APFS was updated twice while Catalina was in security-only maintenanc…
eclecticlight.co
And then you talk about stability?
"Mark Josh Long’s words: “macOS Mojave is — and presumably always will be — vulnerable to the “FORCEDENTRY” bug that has been actively exploited by the Pegasus spyware.” What other actively exploited bugs are Big Sur and Monterey now vulnerable to? What bugs remain in their old versions of APFS, Time Machine, or anything else in the system that could result in data loss?
Making these decisions is always a gamble. Although I well understand you might feel more reassured by waiting a couple of weeks to ensure there are no showstoppers that might make upgrading unwise, delaying beyond the first update brings ever-increasing risk. That’s no longer a risk I’m prepared to take: I put my production Mac where my mouth is, and upgraded it to Ventura on the day of its release, followed rapidly by my other Macs."
True or false? Apple supports macOS for three years. Apple’s security updates are sufficient. New versions of macOS are full of bugs. It’s safer to delay upgrading.
eclecticlight.co
(1)
Access Red Hat’s knowledge, guidance, and support through your subscription.
access.redhat.com
(2)
Some examples from the past (there are more):
For example, Apple sometimes fixes actively exploited vulnerabilities for one OS but not others that it ostensibly supports. Some additional details are here
Apple’s Poor Patching Policies Potentially Make Users’ Security and Privacy Precarious
"Here’s a ridiculously tall chart showing everything #Apple’s said (so far) has been patched in #iOS/iPadOS since 14.8’s release, for 15.x, 14.x, and 12.x. Seems evident that #iOS15, like #macOSMonterey, is getting the most patches and is a safer choice than its predecessors."
Apple isn’t actually patching all the security holes in older versions of macOS
Big Sur got a fix 234 days before Catalina did, although both are supported.
Big Sur got a fix 234 days before Catalina did, although both are supported.
arstechnica.com
"Apple has chosen to leave an estimated 35–40% of all supported Macs in danger of actively exploited vulnerabilities."
"Update: After 6.5 weeks—and significant public pressure resulting from this article—Apple finally released patches for macOS Big Sur and macOS Catalina on May 16 that address these actively exploited vulnerabilities."
Apple has chosen to leave Big Sur and Catalina (around 35 to 40 percent of all Macs) in danger of actively exploited vulnerabilities that have only been patched for macOS Monterey.
www.intego.com
