World of Apple

Just one week after the release of Safari 3.2 Apple has now released a minor update pushing Safari to version 3.2.1.

The update which is available through Software Update and on Apple’s website is said to contain “stability improvements” and is recommended for all Safari 3.2 users.

Safari 3.2

This update is recommended for all Safari users and features protection from fraudulent phishing websites and better identification of online businesses. This update also includes the latest security updates. For detailed information on the security content of this update, please visit this site: http://support.apple.com/kb/HT1222.

• Safari 3.2 for Leopard - 39MB
• Safari 3.2 for Tiger - 25MB
• Safari 3.2 for Windows - 19MB

Following its initial release in June of this year, Apple has seeded the second build of Windows and Mac OS X web browser Safari 4.

The latest version of Safari is likely to include many of the features of Webkit and has reportedly included SquirrelFish technology which provides JavaScript speed ups.

It is currently unknown as to when Apple intends to release Safari 4 to the public.

Time Capsule and AirPort Base Station (802.11n) Firmware 7.3.2 - 4MB

The Time Capsule, AirPort Extreme and AirPort Express Base Station with 802.11n Firmware 7.3.2 updates include bug fixes. This update requires AirPort Utility 5.3.2. AirPort Utility 5.3.2 can be obtained via an automatic software update

Safari 3.1.2 for Tiger - 49.2MB

This update is recommended for all Safari Tiger users and includes stability improvements and the latest security updates.

This update is included with Mac OS X 10.5.4.

Safari 4 Developer preview is available for Mac OS X Leopard, Tiger and Microsoft Windows.

Safari 4 currently has very few new features but is significantly quicker compared to Safari 3.1 and scores 100/100 in the Acid3 test.

Safari 4 adds the ability to Save a webpage as an application, similar functionality to the third-party application Fluid. Also spotted in the Safari preferences is the ability to specify whether new tabs or windows open with; home page, same page, empty page or bookmarks.

Safari 4 passes Acid3 test with 100/100 under Mac OS X 10.5.3

Save webpage as web application

Open news windows or tabs with specific option

Safari 3.1.1 - 39MB

Safari
CVE-ID: CVE-2007-2398
Available for: Windows XP or Vista
Impact: A maliciously crafted website may control the contents of the address bar
Description: A timing issue in Safari 3.1 allows a web page to change the contents of the address bar without loading the contents of the corresponding page. This could be used to spoof the contents of a legitimate site, allowing user credentials or other information to be gathered. This issue was addressed in Safari Beta 3.0.2, but reintroduced in Safari 3.1. This update addresses the issue by restoring the address bar contents if a request for a new web page is terminated. This issue does not affect Mac OS X systems.

WebKit
CVE-ID: CVE-2008-1026
Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.2, Mac OS X Server v10.5.2, Windows XP or Vista
Impact: Viewing a maliciously crafted web page may lead to an unexpected application termination or arbitrary code execution
Description: A heap buffer overflow exists in WebKit’s handling of JavaScript regular expressions. The issue may be triggered via JavaScript when processing regular expressions with large, nested repetition counts. This may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of JavaScript regular expressions. Credit to Charlie Miller for reporting these issues.