Apple patches Safari security vulnerabilities

Written by James Delahunty @ 14 Mar 2010 7:08 User comments (1)

Apple Inc. pushed out Safari 4.0.5 earlier this week to address a slew of security vulnerabilities that could be exploited by attackers. In total, Safari 4.0.5 fixes 16 known security vulnerabilities with the browser. The update is available for Mac and Windows.

Among the vulnerable Safari components are ColorSync, ImageIO and the WebKit engine, which were hit with critical code injection and information disclosure bugs. Unpatched Windows machines running the browser are more vulnerable than those running Mac software.

Apple's advisory on the update is available at: http://support.apple.com/kb/HT4070

Safari for Windows: https://www.afterdawn.com/software/network_software/web_browsers/safari_win.cfm

Safari for Mac OS X: https://www.afterdawn.com/software/alternative_platforms/mac_software/safari_mac.cfm

<Password cracking optimized for SSDs works '100 times faster' >Steve Jobs feels betrayed by Google?

1 user comment

120.3.2010 19:47

ChappyTTV

Send private message to this user

Member

Gee...where are all the Apple bashers?

If this were about IE or any MS code, there would be 500 MS bashers on the bandwagon by now.

NO CODE IS SECURE!

If Mac had 90% market share, they would be the modern day MS, same with any Nix flavor, it's all a matter of numbers. While I don't agree with some of MS's business practices, it is impossible to write secure code..period. How can an engineer secure a hole they don't know even exists? All holes are found after code is released, so there is no way to know what is going to be exploited beforehand. All any engineer can do is work to close such holes when found as fast as possible, and learn from it. The real good ones will try to extrapolate where else a new exploit may be modified to use against other areas of the code, and work to close those too.

And those who post these blobs of infinite wisdom like "MS wouldn't know secure code if it bit them in the ass", just show their lack of knowledge about coding and security.

(I've been a coder, reverse engineer, and recognized security expert since before DOS)

Comments have been disabled for this article.

	VLC hits milestone: over 5 billion downloads (16 Mar 2024 4:31) VLC Media Player, the versatile video-software powerhouse, has achieved a remarkable feat: it has been downloaded over 5 billion times. 1 user comment
	Sideloading apps to Android gets easier, as Google settles its lawsuit (19 Dec 2023 11:09) Google settled its lawsuit in September 2023, and one of the settlement terms was that the way applications are installed on Android from outside the Google Play Store must become simpler. In the future, installing APK files will be easier. 8 user comments
	Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets (06 Jun 2023 9:19) Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
	Neato, the robot vacuum company, ends its operations (02 May 2023 3:38) Neato Robotics has ceased its operations. American robot vacuum pioneer founded in 2005 has finally called it quits and company will cease its operations and sales. Only a skeleton crew will remain who will keep the servers running until 2028. 5 user comments
	How to Send Messages to Yourself on WhatsApp (20 Mar 2023 1:25) The world's most popular messaging platform, Meta-owned WhatsApp has enabled sending messages to yourself. While at first, this might seem like an odd feature, it can be very useful in a lot of situations. .... 18 user comments

	Windows 11: Check if TPM is enabled on your computer In this short guide we will look at how you can check the status of Trusted Platform Module (TPM) on your PC ahead of the coming launch of Windows 11.
	Guide: Is Your Wi-Fi Sluggish or Slow? Here's How to Fix Do you have problems with you Wi-Fi? Slow connection or is it cutting off constantly? This guide aims to remedy these problems. 1 user comment
	What happens if you don't update Android? Sometimes it can be tempting to avoid updating to a new Android version. What happens if you decide to delay major updates to the OS?
	GUIDE: Wi-Fi speeds are slow? Here are some tips Having problems with Wi-Fi speed and stability at home? Here are some tips to follow to alleviate the issues. 1 user comment
	HOWTO: Install Netflix App on rooted Android device 'This app is no longer compatible with your device. Contact the developers for more info.' If you are getting this message from Google Play when trying to install Netflix, then maybe this little guide can help you.

Apple patches Safari security vulnerabilities

1 user comment

Latest news

Reviews

Guides

News archive

Subscribe

Sections:

Follow us:

	Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
	Review: Samsung Jet Bot 90 AI+ - a high-end robot vacuum cleaner Samsung's Jet Bot 90 AI+ is a top-class robot vacuum cleaner that can avoid obstacles and empty its own dust container. Here we review the product. 1 user comment
	Samsung Jet Bot 80+ review - excellent robot vacuum cleaner We review Samsung's Jet Bot 80+ robot vacuum cleaner over a period of three months. 1 user comment