Apple today released a trio of OS X security updates for the Safari web browser, labeled 8.0.4, 7.1.4, and 6.2.4 for OS X Yosemite, Mavericks, and Mountain Lion, respectively. The updates revolve around fixes for WebKit:
Impact: Visiting a maliciously crafted website may lead to an
unexpected application termination or arbitrary code execution
Description: Multiple memory corruption issues existed in WebKit.
These issues were addressed through improved memory handling.
Impact: Inconsistent user interface may prevent users from
discerning a phishing attack
Description: A user interface inconsistency existed in Safari that
allowed an attacker to misrepresent the URL. This issue was addressed
through improved user interface consistency checks.
The updates are available from the Mac App Store’s Software Update tab. An update is not yet available for OS X 10.10.3, which includes Safari version 8.0.5.