Does this update narrow my web browsing options?
iMac 21.5″, macOS 10.15
danni194 wrote:
Does this update narrow my web browsing options?
?
I never knew or heard of a safari update to narrow web browsing options. It is about security vulnerabilities.
You can see Apple published article—
About the security content of Safari 15
Security researchers decide what “maliciously crafted web content” is. Security researchers are constantly probing hardware and software from all companies looking for ways to compromise user’s systems. When they find a hole they create a workable method of using that hole to get into your computer. Then they alert companies like Apple to the security hole and sometimes suggest a way to close that hole. These researchers, the good ones anyway, give companies about 90 days to fix the hole they found before they release the details of the holes to the public. Like other companies Apple pays a bounty for researchers to find these holes, sometimes a very large bounty depending on the severity of the security hole.
Bottom line is your browsing is completely unaffected by these security patches. You can still go anywhere you want to on the internet. The good news is that if you happen upon a website that hackers have installed software that takes advantage of those security holes you will not be compromised because Apple has shut that hole down.
So installing security updates will not prevent you from visiting your favorite websites. Security updates do not block you from going somewhere.
How about someone actually answer my subject line -- What exactly does Safari 15 do for my security? This is what you get when you try to find out: And who decides 'maliciously crafted web content'???
WebKit
Available for: macOS Big Sur and macOS Catalina
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2021-30846: Sergei Glazunov of Google Project Zero
WebKit
Available for: macOS Big Sur and macOS Catalina
Impact: Processing maliciously crafted web content may lead to code execution
Description: A memory corruption issue was addressed with improved memory handling.
CVE-2021-30848: Sergei Glazunov of Google Project Zero
WebKit
Available for: macOS Big Sur and macOS Catalina
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: Multiple memory corruption issues were addressed with improved memory handling.
CVE-2021-30849: Sergei Glazunov of Google Project Zero
WebKit
Available for: macOS Big Sur and macOS Catalina
Impact: Processing maliciously crafted web content may lead to code execution
Description: A memory corruption vulnerability was addressed with improved locking.
CVE-2021-30851: Samuel Groß of Google Project Zero
We are fellow users and cannot speculate about implementation details known only to the Safari 15 product team. Safari 15 supports security protocols current with what sensible websites have upgraded their protocols too. Other than that, there is more detail in the Safari 15 beta release notes.
I think you meant that for the OP instead of me. I already know what you posted.
VikingOSX wrote:
I think you meant that for the OP instead of me. I already know what you posted.
Yep, my bad.
Thank you Viking, you were very helpful in answering my question.
Thank you for your response, you've answered my question.
What exactly does safari 15 do for security?
