«
»

Safari & Firefox Updated… More Security For You!

Last night brought two updates to two popular web browsers.

Apple’s Safari was updated to version 3.11 last night. The security fixes address four vulnerabilities, two of which are Windows only:

  • WebKit
    Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.2, Mac OS X Server v10.5.2, Windows XP or Vista
    Impact: Visiting a malicious website may result in cross-site scripting
  • WebKit
    Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.2, Mac OS X Server v10.5.2, Windows XP or Vista
    Impact: Viewing a maliciously crafted web page may lead to an unexpected application termination or arbitrary code execution
  • Safari
    Available for: Windows XP or Vista
    Impact: A maliciously crafted website may control the contents of the address bar
  • Safari
    Available for: Windows XP or Vista
    Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution

The word on the street is that one of the two Webkit related fixes resolves the bug that was recently used to successfully attack a MacBook Air in the CanSecWest PWN2OWN contest. This update is available through Software Update. It should also be noted that Software Update itself on the Windows platform was also updated last night.

Mozilla Firefox was also updated as well to version 2.0.0.14. to fix a security issue with the Javascript garbage collector. The update will eventually appear for Firefox users and will require a restart of the browsers. Alternately, uses can go to the “Help” menu and “Check For Updates” option.

This entry was posted on April 17, 2008 at 9:56 am and is filed under Products, Security with tags , , . You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

%d bloggers like this: