Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:30767
HistoryMay 29, 2014 - 12:00 a.m.

APPLE-SA-2014-05-21-1 Safari 6.1.4 and Safari 7.0.4

2014-05-2900:00:00
vulners.com
50
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

APPLE-SA-2014-05-21-1 Safari 6.1.4 and Safari 7.0.4

Safari 6.1.4 and Safari 7.0.4 are now available and address the
following:

WebKit
Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5,
OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.3
Impact: Visiting a maliciously crafted website may lead to an
unexpected application termination or arbitrary code execution
Description: Multiple memory corruption issues existed in WebKit.
These issues were addressed through improved memory handling.
CVE-ID
CVE-2013-2875 : miaubiz
CVE-2013-2927 : cloudfuzzer
CVE-2014-1323 : banty
CVE-2014-1324 : Google Chrome Security Team
CVE-2014-1326 : Apple
CVE-2014-1327 : Google Chrome Security Team, Apple
CVE-2014-1329 : Google Chrome Security Team
CVE-2014-1330 : Google Chrome Security Team
CVE-2014-1331 : cloudfuzzer
CVE-2014-1333 : Google Chrome Security Team
CVE-2014-1334 : Apple
CVE-2014-1335 : Google Chrome Security Team
CVE-2014-1336 : Apple
CVE-2014-1337 : Apple
CVE-2014-1338 : Google Chrome Security Team
CVE-2014-1339 : Atte Kettunen of OUSPG
CVE-2014-1341 : Google Chrome Security Team
CVE-2014-1342 : Apple
CVE-2014-1343 : Google Chrome Security Team
CVE-2014-1344 : Ian Beer of Google Project Zero
CVE-2014-1731 : an anonymous member of the Blink development
community

WebKit
Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5,
OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.3
Impact: A malicious site can send messages to a connected frame or
window in a way that might circumvent the receiver's origin check
Description: An encoding issue existed in the handling of unicode
characters in URLs. A maliciously crafted URL could have led to
sending an incorrect postMessage origin. This issue was addressed
through improved encoding/decoding.
CVE-ID
CVE-2014-1346 : Erling Ellingsen of Facebook

For OS X Mavericks and OS X Mountain Lion systems, Safari 7.0.4
and Safari 6.1.4 may be obtained from Mac App Store.

For OS X Lion systems Safari 6.1.4 is available via the Apple
Software Update application.

Information will also be posted to the Apple Security Updates
web site: http://support.apple.com/kb/HT1222

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - http://gpgtools.org

iQIcBAEBAgAGBQJTe6ELAAoJEBcWfLTuOo7tonoP/igNIR7SZEkRvtHHjHIqR2U5
a28aYgzjkALSYDppREpWPMIovnYKZAONabRMJ0r/3LFyl4juBSOsVyBCbUBg8Fpp
GFCsc7x0jva8g1DtPtk/B299GXPBi8fOhEwUIilgTo0+y7ExrgA9wUjCdlWHwPQs
Edbra42Q+52KU+NxWjyeJiPkBIy57p5P0XVnnS3tIxRLHxRed9O8GoNUHcwLhihd
dV5NOBEUvW5Gy2yEhJLZIa64aPOPG3Rz7EA/0zCRiiusLyIGVdyTaOnL4AlHrgh8
BiiAgx3xFUqYiBqCnxAO3gy3CRWhmKukesDKIPmaV27E0cFQ+FkI990oCh8ZSCZg
hi4q5j34mp44Uhr0O068hQyPaA70GAiUVgT/pB7fVS9Z9U0EOPhIvn1IybROP/44
ces9VWOzx9pjzR7OxRmk05mRijnlIQHNzSJp3/DpREDX1DvJxD2vfk8cYFPdweNR
VPFs3acbgOMCpjPLGM3S5HdY/a2UWxolvwR13AnCQ0mFkiD6FsO3z2sgtHdnMkNi
XNW7RMf/7+JesXcNiXYde5iDqE15OPTSWuiYNUHCz9WvSlJmOOSDAZ7F3YBWr+FR
tMEB/TGWZiQmacNiGkY1F4YgF5SqeAHGYeJ2amSycO90+vTU+FLWPCiTWesmu1tG
n/lA21kfHgTURqYVT+xA
=kSr/
-----END PGP SIGNATURE-----

Related

thn 1
nessus 37
securityvulns 12
openvas 28
threatpost 3
cve 22
ubuntucve 22
prion 22
debiancve 3
chrome 3
freebsd 4
mageia 3
fedora 2
debian 6
osv 3
gentoo 4
suse 2
ubuntu 1
thn
thn
Apple Patches 22 Safari WebKit Vulnerabilities
2014-05-23 20:33:00
nessus
nessus
Mac OS X : Apple Safari < 6.1.4 / 7.0.4 Multiple Vulnerabilities
2014-05-22 00:00:00
Safari < 6.1.4 / 7.0.4 Multiple Vulnerabilities
2014-05-23 00:00:00
Apple TV < 6.1.2 Multiple Vulnerabilities
2014-07-06 00:00:00
securityvulns
securityvulns
Apple Safari multiple security vulnerabilities
2014-05-29 00:00:00
Apple TV multiple security vulnerabilities
2014-08-04 00:00:00
APPLE-SA-2014-06-30-4 Apple TV 6.1.2
2014-08-04 00:00:00
openvas
openvas
Apple Safari Multiple Memory Corruption Vulnerabilities-03 Aug14 (Mac OS X)
2014-08-25 00:00:00
Google Chrome Multiple Vulnerabilities-02 Oct2013 (Linux)
2013-10-23 00:00:00
Google Chrome Multiple Vulnerabilities-02 Oct2013 (Mac OS X)
2013-10-23 00:00:00
threatpost
threatpost
May 2014 Apple Safari Browser Security Patches
2014-05-23 09:03:49
Google Fixes Three High-Risk Flaws in Chrome
2013-10-15 13:37:29
Google Fixes 17 Flaws in Chrome 28
2013-07-10 09:37:49
cve
cve
CVE-2014-1327
2014-05-22 19:55:00
CVE-2014-1338
2014-05-22 19:55:00
CVE-2014-1329
2014-05-22 19:55:00
ubuntucve
ubuntucve
CVE-2014-1341
2014-05-22 00:00:00
CVE-2014-1339
2014-05-22 00:00:00
CVE-2014-1338
2014-05-22 00:00:00
prion
prion
Memory corruption
2014-05-22 19:55:00
Memory corruption
2014-05-22 19:55:00
Memory corruption
2014-05-22 19:55:00
debiancve
debiancve
CVE-2013-2927
2013-10-16 20:55:00
CVE-2013-2875
2013-07-10 10:55:00
CVE-2014-1731
2014-04-26 10:55:00
chrome
chrome
Stable Channel Update
2013-10-15 00:00:00
Stable Channel Update
2014-04-24 00:00:00
Stable Channel Update
2013-07-09 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2013-10-15 00:00:00
chromium -- multiple vulnerabilities
2014-04-24 00:00:00
WebKit-gtk -- Multiple vulnerabilities
2015-01-07 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix multiple vulnerabilities
2013-11-09 22:58:53
Updated chromium-browser-stable packages fix multiple vulnerabilities
2014-05-10 23:44:04
Updated chromium-browser-stable packages fix security vulnerabilities
2013-07-26 15:52:03
fedora
fedora
[SECURITY] Fedora 21 Update: webkitgtk3-2.4.8-1.fc21
2015-01-11 02:57:02
[SECURITY] Fedora 21 Update: webkitgtk-2.4.8-1.fc21
2015-01-11 02:57:01
debian
debian
[SECURITY] [DSA 2920-1] chromium-browser security update
2014-05-03 21:44:20
[SECURITY] [DSA 2920-1] chromium-browser security update
2014-05-03 21:44:20
[SECURITY] [DSA 2724-1] chromium-browser security update
2013-07-18 21:59:40
osv
osv
chromium-browser - security update
2014-05-03 00:00:00
chromium-browser - several
2013-07-17 00:00:00
chromium-browser - several
2013-10-26 00:00:00
gentoo
gentoo
WebKitGTK+: Multiple vulnerabilities
2016-01-26 00:00:00
Chromium: Multiple vulnerabilities
2014-08-30 00:00:00
Chromium, V8: Multiple vulnerabilities
2014-03-05 00:00:00
suse
suse
chromium: 31.0.1650.57 version update (important)
2013-11-27 20:04:13
chromium: update to 31.0.1650.57 (important)
2013-12-12 18:05:02
ubuntu
ubuntu
Oxide vulnerabilities
2014-07-23 00:00:00
JSON
Related for SECURITYVULNS:DOC:30767
thn1nessus37securityvulns12openvas28threatpost3cve22ubuntucve22prion22debiancve3chrome3freebsd4mageia3fedora2debian6osv3gentoo4suse2ubuntu1