This issue was addressed by additional validation of text tracks.ĬVE-2013-1024 : Richard Kuo and Billy Suguitan of Triemt Corporation Impact: Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code executionĭescription: An uninitialized memory access issue existed in the handling of text tracks. The issue was addressed through improved bounds checking.ĬVE-2013-0983 : David Fifield of Stanford University, Ben SyversonĪvailable for: OS X Lion v10.7 to v10.7.5, OS X Lion Server v10.7 to v10.7.5, OS X Mountain Lion v10.8 to v10.8.3 This could be triggered by maliciously crafted URLs in Safari. Impact: Visiting a maliciously crafted site may lead to an unexpected application termination or arbitrary code executionĭescription: An unbounded stack allocation issue existed in the handling of text glyphs. This issue was addressed by improved handling of cookies. Impact: An attacker with access to a user's session may be able to log into previously accessed sites, even if Private Browsing was usedĭescription: Permanent cookies were saved after quitting Safari, even when Private Browsing was enabled.
For further details see About the security content of Safari 6.0.5.Īvailable for: OS X Mountain Lion v10.8 to v10.8.3
Note: OS X Mountain Lion v10.8.4 includes the content of Safari 6.0.5.
