New browser time — and unfortunately, time to restart your Mac. Safari has been updated (for 10.4, 10.5 and 10.6 on the Mac espouse a cause, and Windows XP/Vista/7 forward the Win side); it includes the improvements noted:
- Performance improvements for Top Sites
- Stability improvements for plug-ins, and for sites with SVG graphics and online forms
- Fixes issues affecting settings changes to some Linksys routers and iWork.com user comments
There are also a slew of pawn fixes in this update; replete list is in the continuation of this post, via the Apple Product Security mailing list.
The update weighs in at 31.8 MB on my Snow Leopard install, on the other hand your download volume may vary. You can get it in Software Update or by way of the Safari download page.
Safari 4.0.5 is now available and addresses the following: ColorSync CVE-ID: CVE-2010-0040 Available concerning: Windows 7, Vista, XP Impact: Viewing a maliciously crafted figure with an embedded misrepresent half face may be in advance of to an unexpected application termination or arbitrary digest execution Description: An integer overflow, that could product in a heap buffer overflow, exists in the handling of images with an embedded color profile. Opening a maliciously crafted image with an embedded color profile may spend to an unexpected solicitation termination or arbitrary code execution. The issue is addressed by performing more validation of color profiles. This outlet does not affect Mac OS X systems. Credit to Sebastien Renaud of VUPEN Vulnerability Research Team for reporting this issue.
ImageIO CVE-ID: CVE-2009-2285 Available towards: Windows 7, Vista, XP Impact: Viewing a maliciously crafted TIFF image may lead to an unexpected putting into practice limit or arbitrary collection of laws execution Description: A buffer underflow exists in ImageIO’sitting handling of TIFF images. Viewing a maliciously crafted TIFF image may outstrip to each unexpected application termination or unrestrained code execution. This number is addressed through improved bounds checking. For Mac OS X v10.6 systems, this issue is addressed in Mac OS X v10.6.2. For Mac OS X v10.5 systems, this issue is addressed in Security Update 2010-001.
ImageIO CVE-ID: CVE-2010-0041 Available for: Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may result in sending data from Safari’s memory to the website Description: An uninitialized memory access issue exists in ImageIO’s handling of BMP images. Visiting a maliciously crafted website may decision in sending data from Safari’session renown to the website. This number is addressed from one side improved reputation handling and additional validation of BMP images. Credit to Matthew ‘j00ru’ Jurczyk of Hispasec for the sake of reporting this outcome.
ImageIO CVE-ID: CVE-2010-0042 Available for: Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may result in sending data from Safari’s memory to the website Description: An uninitialized memory access delivering exists in ImageIO’s handling of TIFF images. Visiting a maliciously crafted website may inference in sending data from Safari’session memory to the website. This issue is addressed through improved memory handling and additional validation of TIFF images. Credit to Matthew ‘j00ru’ Jurczyk of Hispasec for reporting this upshot.
ImageIO CVE-ID: CVE-2010-0043 Available for: Windows 7, Vista, XP Impact: Processing a maliciously crafted TIFF image may lead to some unanticipated putting into practice limit or arbitrary code execution Description: A memory corruption outlet exists in the handling of TIFF images. Processing a maliciously crafted TIFF image may lead to an unforeseen application termination or arbitrary code execution. This consequence is addressed through improved fame handling. Credit to Gus Mueller of Flying Meat for reporting this issue.
PubSub CVE-ID: CVE-2010-0044 Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting or updating a feed may result in a cookie being set, even allowing that Safari is configured to block cookies Description: An implementation issue exists in the handling of cookies placed end RSS and Atom feeds. Visiting or updating a feed may consequence in a cookie actuality set, uniform if Safari is configured to block cookies via the “Accept Cookies” choice. This update direct one’s speech the issue by respecting the preference while updating or viewing feeds.
Safari CVE-ID: CVE-2010-0045 Available towards: Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may lead to dictatorial code performance Description: An issue in Safari’s handling of extrinsic URL schemes may cause a local toothed to have existence opened in response to a URL encountered on a membrane page. Visiting a maliciously crafted website may lead to arbitrary code completion. This update addresses the issue end improved validation of external URLs. This delivery does not affect Mac OS X systems. Credit to Billy Rios and Microsoft Vulnerability Research (MSVR) for reporting this issue.
WebKit CVE-ID: CVE-2010-0046 Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may have the lead of to each unlooked for application termination or arbitrary code execution Description: A memory corruption issue exists in WebKit’session handling of CSS format() arguments. Visiting a maliciously crafted website may be the commander to an unexpected application end or arbitrary collection of laws effect. This issue is addressed through improved handling of CSS format() arguments. Credit to Robert Swiecki of Google Inc. for reporting this delivery.
WebKit CVE-ID: CVE-2010-0047 Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may lead to an unforeseen application conclusion or arbitrary code execution Description: A use-after-free conclusion exists in the handling of HTML object simple body fallback easy in mind. Visiting a maliciously crafted website may escort to an unexpected application extent or capricious code execution. This issue is addressed through improved memory reference tracking. Credit to wushi of team509, working with TippingPoint’s Zero Day Initiative for reporting this issue.
WebKit CVE-ID: CVE-2010-0048 Available in spite of: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or unlimited digest execution Description: A use-after-free issue exists in WebKit’sitting parsing of XML documents. Visiting a maliciously crafted website may lead to any unexpected application extent or arbitrary digest execution. This issue is addressed through improved reminiscence regard tracking.
Webkit CVE-ID: CVE-2010-0049 Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution Description: A use-after-free issue exists in the handling of HTML elements containing right-to-left displayed text. Visiting a maliciously crafted website may guide to every unexpected reference to practice termination or unrestrained code execution. This issue is addressed end improved memory concern tracking. Credit to wushi&Z of team509 for reporting this issue.
WebKit CVE-ID: CVE-2010-0050 Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may lead to each unanticipated application termination or arbitrary code execution Description: A use-after-free issue exists in WebKit’s handling of incorrectly nested HTML tags. Visiting a maliciously crafted website may lead to an unforeseen application termination or arbitrary collection of laws execution. This issue is addressed through improved memory regard tracking. Credit to wushi&Z of team509 operating with TippingPoint’session Zero Day Initiative for reporting this issue.
WebKit CVE-ID: CVE-2010-0051 Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may lead to the discovery of sensitive accusation Description: An implementation exit exists in WebKit’s handling of cross-origin stylesheet requests. Visiting a maliciously crafted website may disclose the contented of protected resources on any other website. This update courtship the issue by performing additional validation without interruption stylesheets that are loaded for the period of a cross-origin request.
WebKit CVE-ID: CVE-2010-0052 Available because: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may lead to an sudden application termination or despotic code execution Description: A use-after-free issue exists in WebKit’s handling of callbacks in opposition to HTML elements. Visiting a maliciously crafted website may have the lead of to an unexpected application termination or overbearing code execution. This issue is addressed through improved memory reference tracking. Credit: Apple.
WebKit CVE-ID: CVE-2010-0053 Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may serve to an unexpected application termination or arbitrary collection of laws execution Description: A use-after-free issue exists in the delineation of content by a CSS bring into view property set to ‘run-in’. Visiting a maliciously crafted website may lead to every unexpected application termination or arbitrary code performance. This issue is addressed through improved memory intimation tracking. Credit to wushi of team509, working with TippingPoint’s Zero Day Initiative notwithstanding reporting this issue.
WebKit CVE-ID: CVE-2010-0054 Available because of: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.1 or later, Mac OS X Server v10.6.1 or later, Windows 7, Vista, XP Impact: Visiting a maliciously crafted website may direct to an unexpected application termination or tyrannical code execution Description: A use-after-free number exists in WebKit’s handling of HTML image elements. Visiting a maliciously crafted website may lead to an unlooked for application termination or arbitrary code execution. This originate is addressed end improved memory reference tracking. Credit: Apple.
RSS feed for comments on this post · TrackBack URI
Leave a reply