Safari 11 0 2

broken image


Apple Safari Multiple Vulnerabilities Medium Nessus Network Monitor Plugin ID 700501. Synopsis A web browser installed on the remote host is affected by multiple vulnerabilities. Description The version of Apple Safari installed on the remote host is prior to 11.0.2. It is, therefore, affected by multiple vulnerabilities as described. For me Safari Technology Preview didn't help but when I upgraded iOS from 11.1 to 11.2.1 the standalone website appeared again as an inspectable in Safari 11.0.2. – Mark Horgan Dec 31 '17 at 7:45 Wasted hours trying to solve this. However, too many cache files may make your overall browser slow. Sometimes, it may serve you an un-updated version of a webpage. To fix such problems, you may need to clear the cache at regular intervals. Here is how to do that for Safari in macOS. Click on Safari next to the Apple logo; Click on Preferences. Click on Advanced. Defaults write com.apple.Safari WebKitInitialTimedLayoutDelay 0.1; Troubleshooting Safari: Step 1 Restart & Disable Extensions. Sometimes restarting the application resolves the issue and can improve application speed. If Safari starts but is unresponsive, you will have to Force Quit it.

About Apple security updates

For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page.

For more information about security, see the Apple Product Security page. You can encrypt communications with Apple using the Apple Product Security PGP Key.

Apple security documents reference vulnerabilities by CVE-ID when possible.

Safari 11.0.2

Released December 6, 2017

WebKit

Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, and macOS High Sierra 10.13.2

Impact: Processing maliciously crafted web content may lead to arbitrary code execution

Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-13885: 360 Security working with Trend Micro's Zero Day Initiative

Entry added January 22, 2018

WebKit

Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, and macOS High Sierra 10.13.2

Impact: Processing maliciously crafted web content may lead to arbitrary code execution

Description: Multiple memory corruption issues were addressed through improved memory handling.

CVE-2017-7165: 360 Security working with Trend Micro's Zero Day Initiative

Entry added January 22, 2018

WebKit

Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, and macOS High Sierra 10.13.2

Impact: Processing maliciously crafted web content may lead to arbitrary code execution

Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-13884: 360 Security working with Trend Micro's Zero Day Initiative

Entry added January 22, 2018

WebKit

Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, and macOS High Sierra 10.13.2

Impact: Visiting a malicious website may lead to user interface spoofing

Safari 11.0.2 download

Description: Redirect responses to 401 Unauthorized may allow a malicious website to incorrectly display the lock icon on mixed content. This issue was addressed through improved URL display logic.

Safari 11.0.2 Get A Plugin Error

CVE-2017-7153: Jerry Decime

Entry added January 11, 2018

WebKit

Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, and macOS High Sierra 10.13.2

Impact: Processing maliciously crafted web content may lead to arbitrary code execution

Description: Multiple memory corruption issues were addressed with improved memory handling.

Safari 11 0 2

Description: Redirect responses to 401 Unauthorized may allow a malicious website to incorrectly display the lock icon on mixed content. This issue was addressed through improved URL display logic.

Safari 11.0.2 Get A Plugin Error

CVE-2017-7153: Jerry Decime

Entry added January 11, 2018

WebKit

Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, and macOS High Sierra 10.13.2

Impact: Processing maliciously crafted web content may lead to arbitrary code execution

Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-7156: Yuan Deng of Ant-financial Light-Year Security Lab

CVE-2017-7157: an anonymous researcher

CVE-2017-13856: Jeonghoon Shin

CVE-2017-13870: Tencent Keen Security Lab (@keen_lab) working with Trend Micro's Zero Day Initiative

CVE-2017-7160: Richard Zhu (fluorescence) working with Trend Micro's Zero Day Initiative

CVE-2017-13866: Tencent Keen Security Lab (@keen_lab) working with Trend Micro's Zero Day Initiative

Entry updated January 10, 2018

WebKit Web Inspector

Available for: OS X El Capitan 10.11.6, macOS Sierra 10.12.6, and macOS High Sierra 10.13.2

Impact: Processing maliciously crafted web content may lead to arbitrary code execution

Description: A command injection issue existed in Web Inspector. This issue was addressed through improved escaping of special characters.

CVE-2017-7161: Mitin Svyat

Entry added January 10, 2018

Additional recognition

WebKit

We would like to acknowledge Yiğit Can YILMAZ (@yilmazcanyigit) and Abhinash Jain (@abhinashjain) researcher for their assistance.

Entry added February 14, 2018, updated April 9, 2018

iOS Releases | Mobile Safari Versions | Supported Devices

Safari 11.0.2 Update

This table was originally part of a post I made awhile back, but seems to be a fairly popular destination on my site. So, rather than make a new post every time it is updated, I decided to give it it's own home. Some of this information is available on this wikipedia page but is a bit scattered and doesn't include any information on the Mobile Safari version in each release.

Corrections, suggestions, additions, etc., are welcome in the comments or @somegeekintn.

Last update 08/12/18: Added information on ARKit, Biometry, CPU, and 3D Touch support. Updated through iOS 11.4.1

iOS VersionReleaseMobile Safari VersioniPad (2018)iPhone XiPhone 8/8+iPad Pro 12.9 2GiPad Pro 10.5iPad (2017)iPhone 7/7+iPhone SEiPad Pro 9.7iPad Pro 12.9 1GiPhone 6S/6S+iPad Mini 4iPod 6GiPad Air 2iPad Mini 3iPhone 6/6+iPad Mini 2iPad AiriPhone 5SiPhone 5CiPad MiniiPad 4GiPod 5GiPhone 5iPad 3GiPhone 4SiPad 2iPod 4GiPhone 4iPadiPod 3GiPhone 3GSiPod 2GiPhone 3GiPod 1GiPhone
ARKitYesNo
BiometryTouch IDFace IDTouch IDNoneTouch IDNoneTouch IDNone
CPUA10A11A10XA9A10A9A9XA9A8A8XA7A8A7A6A5A6XA5A6A5XA5A4ARM A8ARM11ARMARM11
3D TouchNoYesNoYesNoYesNo
11.4.107/09/18604.1iPad (2018)
03/27/18		iPhone X
11/03/17		iPhone 8/8+
09/22/17		iPad Pro 12.9 2G
06/13/17		iPad Pro 10.5
06/13/17		iPad (2017)
03/27/18 – 03/24/17		iPhone 7/7+
09/16/16		iPhone SE
03/31/16		iPad Pro 9.7
06/05/17 – 03/31/16		iPad Pro 12.9 1G
06/05/17 – 11/11/15		iPhone 6S/6S+
09/25/15		iPad Mini 4
09/09/15		iPod 6G
07/15/15		iPad Air 2
03/21/17 – 10/24/14		iPad Mini 3
09/09/15 – 10/24/14		iPhone 6/6+
09/07/16 – 09/09/14		iPad Mini 2
03/21/17 – 11/12/13		iPad Air
03/21/16 – 11/01/13		iPhone 5S
03/21/16 – 09/20/13
11.405/29/18
11.3.104/24/18
11.303/29/18
11.2.501/23/18
11.2.602/19/18
11.2.201/18/18
11.2.112/13/17
11.212/02/17
11.1.211/16/17
11.1.111/09/17
11.110/31/17
11.0.310/11/17
11.0.210/03/17
11.0.109/26/17
11.009/19/17
10.3.307/19/17602.1iPhone 5C
09/09/15 – 09/20/13		iPad 4G
10/16/14 – 11/02/12		iPhone 5
09/10/13 – 09/21/12
10.3.205/15/17
10.3.104/03/17
10.303/27/17
10.2.101/23/16
10.212/12/16
10.1.110/31/16
10.110/24/16
10.0.310/17/16
10.0.209/23/16
10.0.109/13/16
10.009/13/16
9.3.508/25/16601.1iPad Mini
07/19/15 – 11/02/12		iPod 5G
07/15/15 – 10/11/12		iPad 3G
10/23/12 – 03/16/12		iPhone 4S
09/09/14 – 03/11/11		iPad 2
03/18/14 – 03/11/11
9.3.408/04/16
9.3.307/18/16
9.3.205/16/16
9.3.103/31/16
9.303/21/16
9.2.102/18/16
9.212/08/15
9.110/21/15
9.0.209/30/15
9.0.109/23/15
9.009/16/15
8.4.108/13/15600.1.4
8.406/30/15
8.304/08/15
8.203/09/15
8.1.301/27/15
8.1.212/09/14
8.1.111/17/14
8.110/20/14
8.0.209/25/14
8.0.109/24/14
8.009/17/14
7.1.206/30/149537.53iPhone 4
09/10/13 – 06/21/10
7.1.104/22/14
7.103/10/14
7.0.602/21/14
7.0.501/29/14
7.0.411/14/13
7.0.310/22/13
7.0.209/26/13
7.0.109/19/13
7.009/18/13
6.1.405/02/138536.25iPod 4G
05/30/13 – 09/08/10		iPhone 3GS
09/12/10 – 06/19/09
6.1.303/19/13
6.1.202/19/13
6.1.102/06/13
6.101/28/13
6.0.212/18/12
6.0.111/01/12
6.009/10/12
5.1.105/10/127534.48.3iPad
03/02/11 – 04/03/10		iPod 3G
09/01/10 – 09/09/09
5.103/07/12
5.0.111/10/11
5.010/12/11
4.3.507/25/116533.18.5
4.3.407/15/11
4.3.305/04/11
4.3.204/14/11
4.3.103/25/11
4.303/09/11
4.2.1007/25/11
4.2.907/15/11
4.2.805/04/11
4.2.704/14/11
4.2.602/10/11
4.2.502/07/11
4.2.111/22/10iPod 2G
09/01/10 – 09/09/08		iPhone 3G
06/04/10 – 07/11/08
4.2N/A
4.109/08/106531.22.7
4.0.208/11/10
4.0.107/15/10
4.006/21/10
3.2.208/11/10531.21.10
3.2.107/15/10
3.204/03/10
3.1.302/02/10528.16iPod 1G
09/08/08 – 09/14/07		iPhone
07/11/08 – 06/29/07
3.1.210/08/09
3.1.109/09/09
3.109/09/09
3.0.107/31/09
3.006/17/09
2.2.101/27/09525.18.1
2.211/21/08525.20
2.1.109/09/08
2.109/09/08
2.0.208/18/08
2.0.108/04/08
2.007/11/08
1.1.507/15/08?
1.1.402/26/08
1.1.301/15/08
1.1.211/12/07
1.1.109/27/07
1.109/14/07
1.0.208/21/07
1.0.107/31/07
1.006/29/07




broken image
PreviousNext
Cookie Use
We use cookies to improve browsing experience, security, and data collection. By accepting, you agree to the use of cookies for advertising and analytics. You can change your cookie settings at any time. Learn More
Accept all
Settings
Decline All
Cookie Settings
Necessary Cookies
These cookies enable core functionality such as security, network management, and accessibility. These cookies can’t be switched off.
Analytics Cookies
These cookies help us better understand how visitors interact with our website and help us discover errors.
Preferences Cookies
These cookies allow the website to remember choices you've made to provide enhanced functionality and personalization.
Save