Apple has put out new versions of its Safari web browser for OS X to fix a number of vulnerabilities that could enable hackers to run malicious code on a Mac.
In a security advisory, Apple warned that 17 bugs affect Safari 8.0.4 for OS X 10.10 Yosemite, Safari 7.1.4 for OS X 10.9 Mavericks and Safari 6.2.4 for OS X 10.8 Mountain Lion.
The first patch fixes a number of memory corruption problems in WebKit that could lead to an unexpected application termination or arbitrary code execution. Apple said that these issues were addressed through improved memory handling.
The second vulnerability concerned a user interface inconsistency in Safari itself that could prevent users from discerning a phishing attack. An attacker could misrepresent the URL in the browser, folling the user into thinking a website was genuine. Apple said this was fixed by improving user interface consistency checks.
Users can download the latest Safari versions 8.0.4, 7.1.4 and 6.2.4 for free through Software Update.
Apple did not give any further detail on the bugs or whether they had been exploited by criminals.
"For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available," according to the website notice.
The patches comes days after Apple was forced to roll out a number of security updates.
Apple, as well as Microsoft and Google, have had to rush up fixes caused by the FREAK vulnerability, discovered in March.
The FREAK or Factoring Attack on RSA-EXPORT Keys flaw, is an SSL vulnerability that resulted from a ruling by the US government in the nineties that banned the export of strong encryption.
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
ThreatLabz Report: The state of encrypted attacksWhitepaper What's hiding in your web traffic?
-
How to encrypt files and folders in Windows 10Tutorials Here’s how to make your sensitive data unreadable to prying eyes
-
The government needs to abandon its war on WhatsAppOpinion Encryption might seem like an easy target, but mess with it at your peril
-
Watch: Now this is how you securely erase dataIn-depth Delete your data properly - by smashing your laptop to pieces
-
Alan Turing's computer-generated music gets restored after 65 yearsNews Decades later, you can now hear the true sound of Turing's computer
-
Two laptops are lost on the tube every day, says TfLNews Number of lost devices has shot up by almost 80 per cent since 2010
-
Social networks should report suspicious users, says spy bossNews MI5 director general calls for updated surveillance powers
-
Symantec finds Breaking Bad-themed ransomwareNews Better call Saul, because these hackers may have encrypted your data
