Safari 5.0.3/4.1.3 fixes 27 vulnerabilities

Filed Under: Apple, Apple Safari, Mobile, OS X, Vulnerability

Apple Updater Safari
Apple has released an update to their Safari web browser for OS X 10.4, 10.5, 10.6 and Windows platforms. Only 2 of these flaws appear to have been discovered by Apple, yet many of them were reported to Apple by Google and the Google Chrome browser team.

To some extent this is one of the benefits of using the open source WebKit engine that is also used by Google Chrome, Nokia's Symbian S60 browser, Amazon Kindle, Android, and Adobe Air. With that many eyes looking into the code, flaws can be found and fixed at a much faster rate than with a closed source solution.

Two questions do come to mind though. One is whether these flaws exist in the version of Safari for the iPad/iPhone/iPod Touch. The other is why Apple is saving up 27 vulnerabilities into one release. The previous update from Apple for Safari was in early September, and live Oracle's Java, I think it may be time for Apple to move to more frequent updates to keep Apple users safe.

Sophos Anti-Virus for OS X Home EditionIf you are a Safari user make sure you apply these updates as soon as possible, as it won't be long before our criminal adversaries attempt to use their disclosure against us. If you own a personal Mac, why not try out our free Sophos Anti-Virus for OS X?

To download Safari 5.0.3 directly go to http://www.apple.com/safari/download/. Individuals can use the Apple Software Update application and apply the latest updates by choosing "Software Update..." in the Apple menu on OS X.

, , ,

You might like

2 Responses to Safari 5.0.3/4.1.3 fixes 27 vulnerabilities

  1. I hate apple pushing the itunes and safari updates when I don't have those software! I just use this quicktime player.

  2. Dawg · 942 days ago

    Where the hell is the fix for 4.1.3???

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Chester Wisniewski is a Senior Security Advisor at Sophos Canada. He provides advice and insight into the latest threats for security and IT professionals with the goal of providing clear guidance on complex topics. You can follow Chester on Twitter as @chetwisniewski, on App.net as Chester, Chester Wisniewski on Google Plus or send him an email at chesterw@sophos.com.