dslreports logo
 
    All Forums Hot Topics Gallery
spc
Search similar:


uniqs
807

antdude
Matrix Ant
Premium Member
join:2001-03-25
US

1 recommendation

antdude

Premium Member

Updated Safaris for Mac OS X (v10.8.5 to v10.10.1).

"Date: Wed, 03 Dec 2014 13:55:42 -0800
From: Apple Product Security
To: security-announce@lists.apple.com
Subject: APPLE-SA-2014-12-2-1 Safari 8.0.1, Safari 7.1.1, and Safari 6.2.1
X-Mailer: Apple Mail (2.1993)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2014-12-3-1 Safari 8.0.1, Safari 7.1.1, and Safari 6.2.1

Safari 8.0.1, Safari 7.1.1, and Safari 6.2.1 is now available and
addresses the following:

WebKit
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5,
OS X Yosemite v10.10.1
Impact: Style sheets are loaded cross-origin which may allow for
data exfiltration
Description: An SVG loaded in an img element could load a CSS file
cross-origin. This issue was addressed through enhanced blocking of
external CSS references in SVGs.
CVE-ID
CVE-2014-4465 : Rennie deGraaf of iSEC Partners

WebKit
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5,
OS X Yosemite v10.10.1
Impact: Visiting a website that frames malicious content may lead to
UI spoofing
Description: A UI spoofing issue existed in the handling of
scrollbar boundaries. This issue was addressed through improved
bounds checking.
CVE-ID
CVE-2014-1748 : Jordan Milne

WebKit
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5,
OS X Yosemite v10.10.1
Impact: Visiting a maliciously crafted website may lead to an
unexpected application termination or arbitrary code execution
Description: Multiple memory corruption issues existed in WebKit.
These issues were addressed through improved memory handling.
CVE-ID
CVE-2014-4452
CVE-2014-4459
CVE-2014-4466 : Apple
CVE-2014-4468 : Apple
CVE-2014-4469 : Apple
CVE-2014-4470 : Apple
CVE-2014-4471 : Apple
CVE-2014-4472 : Apple
CVE-2014-4473 : Apple
CVE-2014-4474 : Apple
CVE-2014-4475 : Apple
..."

»support.apple.com/kb/HT1222 will have the details on them.
antdude

1 edit

antdude

Premium Member

Safari v6.2.1 in Mac OS X v10.8.5?

Hello all.

Is it me or is today's Safari v6.2.1 update, for v6.2.0, not showing up in Mac OS X v10.8.5's App Store right now?

Thank you in advance.

Anav
Sarcastic Llama? Naw, Just Acerbic
Premium Member
join:2001-07-16
Dartmouth, NS

1 recommendation

Anav to antdude

Premium Member

to antdude

Re: Updated Safaris for Mac OS X (v10.8.5 to v10.10.1).

I looked last night for the safari update,,,, not to be found. So concur with antdude.

lordpuffer
Legalize It Joe!
Premium Member
join:2004-09-19
Old Town, ME

1 recommendation

lordpuffer

Premium Member

I'm a little confused, but:

»[OS X] Safari updates
lordpuffer

1 recommendation

lordpuffer to antdude

Premium Member

to antdude
Now I'm not as confused. All 3 updates were pulled. I installed Safari 7.1.1 on Mavericks with no problem before it was pulled:

»osxdaily.com/2014/12/03/ ··· ac-os-x/

antdude
Matrix Ant
Premium Member
join:2001-03-25
US

antdude

Premium Member

said by lordpuffer:

Now I'm not as confused. All 3 updates were pulled. I installed Safari 7.1.1 on Mavericks with no problem before it was pulled: ...

Ahhh!!! Thanks.
antdude

1 recommendation

antdude

Premium Member

Rereleased!

"Date: Thu, 11 Dec 2014 10:31:46 -0800
From: Apple Product Security
To: security-announce@lists.apple.com
Subject: APPLE-SA-2014-12-11-1 Safari 8.0.2, Safari 7.1.2, and Safari 6.2.2
X-Mailer: Apple Mail (2.1993)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2014-12-11-1 Safari 8.0.2, Safari 7.1.2, and Safari 6.2.2

Safari 8.0.2, Safari 7.1.2, and Safari 6.2.2 are now available and
include the security content of Safari 8.0.1, Safari 7.1.1, and
Safari 6.2.1: »support.apple.com/en-us/HT6596

Safari 8.0.2, Safari 7.1.2, and Safari 6.2.2 may be obtained from the
Mac App Store.

Information will also be posted to the Apple Security Updates
web site: »support.apple.com/kb/HT1222 ..."

lordpuffer
Legalize It Joe!
Premium Member
join:2004-09-19
Old Town, ME

1 recommendation

lordpuffer

Premium Member

Thanks again antdude......Got it!