Apple today released a trio of OS X security updates for the Safari web browser, labeled 8.0.4, 7.1.4, and 6.2.4 for OS X Yosemite, Mavericks, and Mountain Lion, respectively. The updates revolve around fixes for WebKit:
Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues existed in WebKit. These issues were addressed through improved memory handling.
Impact: Inconsistent user interface may prevent users from discerning a phishing attack Description: A user interface inconsistency existed in Safari that allowed an attacker to misrepresent the URL. This issue was addressed through improved user interface consistency checks.
The updates are available from the Mac App Store’s Software Update tab. An update is not yet available for OS X 10.10.3, which includes Safari version 8.0.5.