APPLE-SA-2010-09-07-1 Safari 5.0.2 and Safari 4.1.2  
Wednesday, September 8, 2010 at 12:47PM
drStrangeP0rk in Apple, Mac OSX 10.5, Mac OSX 10.6, Safari, Updates

Apple has released Safari 5.0.2 and Safari 4.1.2 to address vulnerabilities in WebKit. Users should apply these updates since they are both critical. There was an input validation issue related to floating point data types which could be exploited, this has been addressed by performing improved validation. 

The other major issue is related to run-in styling which a malicious site could tag advantage of a use after free event. Object pointers has been improved in WebKit handling of run-in styling. Both of these updates require a restart of the server and client versions of MacOSX. 

Article originally appeared on magmatic.com (http://www.magmatic.com/).
See website for complete article licensing information.