Tech titan Apple has confirmed patches for a long list of vulnerabilities in its Safari browser, which could have allowed attackers to gain system access on people’s Mac OS X machines.
Many of the flaws were resident in the WebKit browser engine that Safari uses, allowing an outsider to corrupt memory. Safari 6 and 7 are both affected.
“Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution,” Apple said of the Webkit flaws, in its advisory.
A separate WebKit logic issue, identified by Ian Beer of Google Project Zero, was also patched. “An attacker running arbitrary code in the WebProcess may be able to read arbitrary files despite sandbox restrictions,” Apple warned.
A total of 27 flaws were fixed, across Mac OS X Mountain Lion and Mavericks operating systems. The Safari 7.0.3 and 6.1.3 updates will fix the issues.
It was only in February that Apple was forced to issue fixes across iOS and Mac OS X for a weakness in the operating systems’ handling of SSL encryption.
Are you a security expert? Try our quiz!
Fourth quarter results beat Wall Street expectations, as overall sales rise 6 percent, but EU…
Hate speech non-profit that defeated Elon Musk's lawsuit, warns X's Community Notes is failing to…
Good luck. Russia demands Google pay a fine worth more than the world's total GDP,…
Google Cloud signs up Spotify, Paramount Global as early customers of its first ARM-based cloud…
Facebook parent Meta warns of 'significant acceleration' in expenditures on AI infrastructure as revenue, profits…
Microsoft says Azure cloud revenues up 33 percent for September quarter as capital expenditures surge…