Apple fixes critical vulnerabilities in Safari
Other vulnerabilities eliminated in the update affect both Windows and Mac OS X versions of Safari, including an issue in the libxml library that may lead to an unexpected application termination or the disclosure of local information. Additional updates to the WebKit browser engine correct problems in WebKit's implementation of Cross-Origin Resource Sharing and the processing of HTML 5 Media Elements, such as emails that automatically reload audio or video content without asking the user.
All users are advised to update their browsers as soon as possible. Safari 4.0.4 is available to download for Windows XP, Vista, Windows 7, Mac OS X 10.4.11, 10.5.8 and 10.6.1.
- About the security content of Safari 4.0.4, security advisory from Apple.
- Apple releases Mac OS X 10.6.2, a report from The H.