Free Republic
Browse · Search		 General/Chat
Topics · Post Article

Skip to comments.

Apple fixes Safari in latest Security Update
Macworld ^ | 11/29/2005 | Jim Dalrymple

Posted on 11/29/2005 6:35:26 PM PST by Panerai

Apple on Tuesday released Security Update 2005-009, which addresses issues with both Mac OS X and Mac OS X Server. Among the components affected in this release are apache_mod_ssl; CoreFoundation; CoreTypes; curl; iodbcadmin; OpenSSL; Safari;sudo; and syslog.

The biggest changes for Mac OS X users are with the company’s Web browser software, Safari. In total, four separate issues have been fixed in this release.

The first issue fixes a problem that affects Safari’s download directory, which is normally specified by the user. However, if a web site suggests an overlong filename for a download, it is possible for Safari to create this file in other locations. Apple notes that the filename and location of downloaded file content cannot be directly specified by remote servers, but this may still lead to downloading content into locations accessible to other users.

Apple also fixed a potential problem when visiting Web sites with WebKit-based applications. According to Apple, WebKit contains a heap overflow that may lead to the execution of arbitrary code. This may be triggered by content downloaded from malicious Web sites in applications that use WebKit such as Safari.

Two problems with JavaScript have addressed. Safari now has a new JavaScript engine to combat a potentially exploitable heap overflow. The new engine incorporates a more robust input validation, according to Apple. The second JavaScript issue addressed adds the name of the originating Web site to the dialog boxes.

The update can be downloaded from Apple’s Web site or by using the Software Update mechanism in Mac OS X. More information on the other changes in the security update is available from Apple’s Web site.

TOPICS: Computers/Internet
KEYWORDS: apple; mac; osx; safari; securityupdate

1 posted on 11/29/2005 6:35:28 PM PST by Panerai
[ Post Reply | Private Reply | View Replies]
To: Swordmaker

Apple posts another Security Update via Software Update


2 posted on 11/29/2005 6:38:21 PM PST by Panerai
[ Post Reply | Private Reply | To 1 | View Replies]
To: Swordmaker

FYI


3 posted on 11/29/2005 6:39:07 PM PST by Auntie Mame (The best argument against democracy is a five-minute conversation with the average voter.--WC)
[ Post Reply | Private Reply | To 1 | View Replies]
To: Bush2000; antiRepublicrat; Action-America; August West; eno_; Glenn; gmill; BigFinn; backslacker; ..
Software Updates for Macs... PING!

Includes security fixes for Safari and Java.

If you want on or off the Mac Ping List, Freepmail me.

4 posted on 11/29/2005 8:28:04 PM PST by Swordmaker (Beware of Geeks bearing GIFs.)
[ Post Reply | Private Reply | To 1 | View Replies]
To: Panerai; Swordmaker

seen this?

http://www.caminobrowser.org/


5 posted on 11/29/2005 8:56:04 PM PST by SunkenCiv (Down with Dhimmicrats! I last updated my FR profile on Wednesday, November 2, 2005.)
[ Post Reply | Private Reply | To 1 | View Replies]
To: SunkenCiv

Have you tried it?


6 posted on 11/29/2005 9:43:23 PM PST by cowboyway (My heroes have always been cowboys.)
[ Post Reply | Private Reply | To 5 | View Replies]
To: cowboyway

I've used Camino 0.8.4 a fair amount. A good browser, better in some ways than Safari and Firefox, which is ironic, since Camino is sort of a subset of Firefox specialized for the Mac.

When Camino is more mature, it will be a very good browser indeed, and may replace the others on my desk top.


7 posted on 11/30/2005 3:59:14 AM PST by jimtorr
[ Post Reply | Private Reply | To 6 | View Replies]
To: Swordmaker
Thanks!

Done.

8 posted on 11/30/2005 4:34:51 AM PST by Uri’el-2012 (Y'shua <==> YHvH is my Salvation (Psalm 118-14))
[ Post Reply | Private Reply | To 4 | View Replies]
To: Panerai

I'll say it before someone else -

"But I thought Mac OS X was perfect..?"

DISCLAIMER: I am a Mac User.


9 posted on 11/30/2005 7:16:46 AM PST by spower
[ Post Reply | Private Reply | To 1 | View Replies]
To: cowboyway

I've tried it, it was okay. Generally I use iCab.


10 posted on 11/30/2005 10:35:47 AM PST by SunkenCiv (Down with Dhimmicrats! I last updated my FR profile on Wednesday, November 2, 2005.)
[ Post Reply | Private Reply | To 6 | View Replies]
To: spower

MACs don't have any security defects. Never have had.


11 posted on 11/30/2005 10:39:25 AM PST by js1138 (Great is the power of steady misrepresentation.)
[ Post Reply | Private Reply | To 9 | View Replies]
To: spower
I'll say it before someone else - "But I thought Mac OS X was perfect..?"

Now its more perfect...

12 posted on 11/30/2005 11:21:13 AM PST by Swordmaker (Beware of Geeks bearing GIFs.)
[ Post Reply | Private Reply | To 9 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search		 General/Chat
Topics · Post Article
FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson