Apple released Safari 8.0.4 for OS X Yosemite on Tuesday. The update includes stability and security improvements. Apple also released Safari 7.1.4 for Mavericks, and Safari 6.2.4 for Mountain Lion.
The update fixes vulnerabilities in WebKit, which could allow a maliciously crafted website to unexpectedly terminate an application, or arbitrarily execute code. The update also fixes a bug that could have allowed attackers to misrepresent a URL.
WebKit
Impact: Visiting a maliciously crafted website may lead to an
unexpected application termination or arbitrary code execution
Description: Multiple memory corruption issues existed in WebKit.
These issues were addressed through improved memory handling.WebKit
Impact: Inconsistent user interface may prevent users from
discerning a phishing attack
Description: A user interface inconsistency existed in Safari that allowed an attacker to misrepresent the URL. This issue was addressed through improved user interface consistency checks.
The new Safari updates can be downloaded through via the “Update” tab in the Mac App Store.
