Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

MacRumors

macrumors bot
Original poster
Apr 12, 2001
65,027
33,222



safariicon.jpg
Apple today released Safari 8.0.6 for OS X Yosemite, bringing new security fixes to the browser. Apple has also released Safari 7.1.6 for Mavericks users and Safari 6.2.6 for Mountain Lion users. According to a security support document, the update addresses several WebKit vulnerabilities that could lead to arbitrary code execution or compromised personal information.
WebKit
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5, and OS X Yosemite v10.10.3
Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution
Description: Multiple memory corruption issues existed in WebKit. These issues were addressed through improved memory handling.

WebKit History
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5, and OS X Yosemite v10.10.3
Impact: Visiting a maliciously crafted website may compromise user information on the filesystem
Description: A state management issue existed in Safari that allowed unprivileged origins to access contents on the filesystem. This issue was addressed through improved state management.

WebKit Page Loading
Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5, and OS X Yosemite v10.10.3
Impact: Visiting a malicious website by clicking a link may lead to user interface spoofing
Description: An issue existed in the handling of the rel attribute in anchor elements. Target objects could get unauthorized access to link objects. This issue was addressed through improved link type adherence.
Today's Safari 8.0.6 update is recommended for all OS X Yosemite users and can be downloaded using the software update mechanism in the Mac App Store.

The Safari 8.0.6 update comes almost a month after the launch of Safari 8.0.5, which was bundled into the OS X Yosemite 10.10.3 release on April 8.

Article Link: Apple Releases Safari 8.0.6 With Security Improvements
 

teslo

macrumors 6502a
Jun 9, 2014
929
599
does this affect the average user, or only those who work with webkit?
 
Last edited by a moderator:

Aldaris

macrumors 68000
Sep 7, 2004
1,790
1,247
Salt Lake
Is it available for those running OS X 10.10.4 as well? Because I'm not seeing it.

I am not either. I imagine it'll be packaged in the next developer beta release. Among a host of other issues to be addressed as well.

With that said, I imagine another beta version within the next week-but thats just an opinion that will probably be knocked down by a mass of forum members.
 

brdeveloper

macrumors 68030
Apr 21, 2010
2,630
313
Brasil
What should be updated is the behavior of alert boxes (typically the alert() javascript function) which are modal not only for its parent tab, but also to the whole browser. You can't even close the tab without clicking "ok".
 

laurim

macrumors 68000
Sep 19, 2003
1,985
970
Minnesota USA
Wonder if this will fix Safari from CONSTANTLY choking on "Safari Web Content" and flash. I have turned off practically everything in preferences and it's still happening. I'm ready to jump ship to Firefox or something! I've never had so many issues with Safari and I don't know what upgrade ruined it.
 

CanadaMaple

macrumors member
May 1, 2015
65
9
This solved my inability to view certain Apple KB documents. As well as memory leaks.

Some major changes in this release security wise.
 

Zedcars

macrumors 6502
Apr 5, 2010
406
718
Brighton, UK
What's the point of patching Safari on Mav and ML if they aren't going to fix the Rootpipe vulnerability? It's good that they've patched it, but the latter problem leaves non-Yosemite users at risk.
 

severe

macrumors 6502a
May 23, 2007
750
121
Wonder if this will fix Safari from CONSTANTLY choking on "Safari Web Content" and flash. I have turned off practically everything in preferences and it's still happening. I'm ready to jump ship to Firefox or something! I've never had so many issues with Safari and I don't know what upgrade ruined it.

Same here, though I've been using Firefox for a couple of months now. Occasionally, I'll open Safari (most often by mistake lately) but it will just hang and not opening anything unless I reboot. Then it begins to hang shortly after. It's pretty useless.
 

JGRE

macrumors 65816
Oct 10, 2011
1,012
664
Dutch Mountains
Wonder if this will fix Safari from CONSTANTLY choking on "Safari Web Content" and flash. I have turned off practically everything in preferences and it's still happening. I'm ready to jump ship to Firefox or something! I've never had so many issues with Safari and I don't know what upgrade ruined it.

I think you are the only one expierecing this, Safari should jump ship on you ;)

See that user "severe" has the same issue.... But 2 out of million users?
 

Lateraleye

macrumors newbie
Apr 13, 2011
20
0
I think you are the only one expierecing this, Safari should jump ship on you ;)

See that user "severe" has the same issue.... But 2 out of million users?

I'm experiencing it as well. I'm not sure what caused it but within the last week or two Safari began to freeze/hang on a lot of pages I had always visited regularly.

Or should I say, was experiencing it. After installing the update last night I tried a few of the pages it was having trouble with (flash/ad heavy) and it was back to being smooth. I hope it was a fix and I wasn't just lucky.

(Actually now that I think about it, I tried installing Firefox and that browser had the same problems. Maybe a bad Flash version is the true culprit?)
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.