Apple posts macOS 26.5 enterprise notes outlining fixes for enterprise issues

Apple published enterprise release notes for macOS Tahoe 26.5 on May 14, adding detail for IT administrators about fixes affecting managed Macs. The company’s support page said the update resolves a black-screen startup issue after software updates, unexpected restarts while mounting SMB shares, and problems tied to device management enrollment and smart card logins. Apple released macOS Tahoe 26.5 on May 11, according to its security documentation. The notes arrive weeks before WWDC 2026, when Apple is expected to outline its next round of platform changes. Apple’s enterprise support page said macOS updates are recommended for all users and that device administrators can manage software updates through a device management service. ### Which enterprise problems did Apple say macOS 26.5 fixes? Apple’s enterprise page listed six fixes in macOS Tahoe 26.5 that are directly relevant to managed environments. (support.apple.com) The company said some Macs could start to a black screen after a software update, some computers restarted unexpectedly while mounting SMB shares, and some MacBook Air with M5 and MacBook Pro models with M5 Pro or M5 Max restarted unexpectedly when using some content filter extensions. The same Apple document said successful smart card logins could trigger incorrect password attempts. It also said root and intermediate certificates are now correctly updated when renewing enrollment in a device management service, and that Safari autofill restrictions set through device management no longer prevent users from enabling Autofill Passwords and Passkeys for other apps in System Settings. (support.apple.com) ### What changed for companies using SMB and directory services? Apple said the SMB client now performs DNS SRV lookups for `_ldap._tcp.<serverName>` and `_gc._tcp.<serverName>` entries configured in `nsmb.conf` when a Mac is not bound to Active Directory. If domain controllers are found, the client attempts connections in order and falls back to the original server name if those attempts fail, according to the support note. (support.apple.com) That change matters for organizations that use SMB shares without binding Macs directly to Active Directory. Apple described the behavior as part of the macOS Tahoe 26.5 enterprise changes and published it as configuration guidance for administrators. ### How broad was the security patch in macOS 26.5? Apple’s security advisory for macOS Tahoe 26.5 said the release included fixes across multiple components, including Accelerate, Accounts, APFS, App Intents, AppleJPEG, Audio, CoreMedia, CoreServices and CoreSymbolication. (support.apple.com) The advisory said the issues included possible denial-of-service, privacy bypass, sandbox escape, unexpected system termination and access to private information. The security page said Apple generally does not disclose or confirm security issues until an investigation has occurred and patches are available. Apple assigned or referenced CVE identifiers for the issues where possible, including CVE-2026-28991, CVE-2026-28988 and CVE-2026-28995. ### Did Apple pair the release notes with broader deployment updates? Apple updated its Apple Platform Deployment documentation on May 12 with changes spanning iOS 26.5, iPadOS 26.5, macOS 26.5, tvOS 26.5, visionOS 26.5 and watchOS 26.5. (support.apple.com) That page said the update was not a full list of changes, but it added new deployment and device management material including Highly Restricted Networks information, software release dates and 802.1X configuration updates. Apple also said organizations can test deployment features using beta operating systems through AppleSeed for IT. The company’s enterprise macOS page links administrators to Apple security releases for more detail on patch content. ### Where should IT teams look now? Apple’s support pages now split the information across three documents: the general macOS Tahoe update page, the enterprise-specific release notes, and the security advisory. (support.apple.com) The general update page for macOS Tahoe 26.5 says the release includes enhancements, bug fixes and security updates, while the enterprise page lists the managed-device fixes in more detail. (support.apple.com) Apple’s latest software release page lists macOS 26.5 as the current macOS version. For IT administrators planning patch windows before WWDC 2026, the next step is to review Apple Support’s enterprise and security pages and schedule deployment of macOS Tahoe 26.5 on managed fleets. (support.apple.com 1) (support.apple.com 2)