Apple has patched a total of 27 vulnerabilities in Safari 6 and Safari 7 which were exploited successfully during the recent Pwn2Own hacking contest earning security researchers rewards in tune of $65,000.
According to Apple if unpatched, 26 out of the 27 vulnerabilities could lead to “arbitrary code execution.” All 27 vulnerabilities are in WebKit – the open-source browser engine that powers Safari.
Fifteen of the vulnerabilities have been credited to Google Chrome Security Team, three to cloudfuzzer, one to VUPEN – the French vulnerability seller, one each to KeenTeam and ant4g0nist (SegFault) working with HP’s Zero Day Initiative.
Quite a few of these vulnerabilities have already been patched in Apple TV and iOS several weeks ago.
Apple didn’t release any update for Safari 5.1.10, its most-current browser that works on OS X 10.6 Snow Leopard. Apple stopped supporting the 2009 operating system sometime back.
[Source: Apple]
