Apple Releases Security Update 2006-007
So Apple has finally released the 2006-007 (Bond Edition) security update which fixes 31 security vulnerabilities! Twelve of the 22 fixes allow remote code execution. Anyway, I reported a bunch of different Safari flaws and it looks like only one of them got fixed this round. Below are links to the advisories:
Apple OSX Safari 2.0.4 “WebTextRenderer” DoS
Apple OSX Safari 2.0.4 “RenderBlock::createLineBoxes” DoS
Apple OSX Safari 2.0.4 Out-of-Bounds Memory Read
» Safari on Windows could be big target for malware | Zero Day | ZDNet.com Said,
June 11, 2007 @ 2:35 pm
[…] project, details on two Safari vulnerabilities were released. According to Tom Ferris, there are several unpatched Safari flaws […]