WebKit contains an unspecified flaw. With a specially crafted web page, a context-dependent attacker can corrupt memory to cause a crash or potentially execute arbitrary code. No further details have been provided.

OSVDB is not currently aware of a solution for this vulnerability.

Upgrade to Apple Safari version 5.0.4, as it has been reported to address this vulnerability. An upgrade is required as there are no known workarounds.

• CVE ID: 2011-0164 (see also: NVD)
• Secunia Advisory ID: 43582 45325 46339
• Related OSVDB ID: 71496 71497 71498 71499 71500 71501 71502 71503 71504 71505 71506 71507 71508 71509 71510 71511 71512 71513 71514 71515 71516 71517 71518 71519 71520 71521 71522 71523 71525 71526 71527 71528 71529 71530 71531 71532 71533 71534 71535 71536 71537 71538 71539 71540 71541 71542 71543 71544 71545 71546 71547
• Mail List Post: http://lists.apple.com/archives/security-announce/2011//Jul/msg00002.html
  http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html
  http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html
• Vendor Specific News/Changelog Entry: http://support.apple.com/kb/HT4554
• Vendor Specific Advisory URL: http://support.apple.com/kb/HT4808
• Other Advisory URL: http://support.apple.com/kb/HT4981
• News Article: http://www.computerworld.com/s/article/9218534/Apple_delivers_OS_X_Lion_to_Mac_App_Store_
  http://www.computerworld.com/s/article/9218549/Apple_patches_58_Safari_bugs_to_deflect_drive_by_attacks
  http://www.zdnet.com/blog/security/apple-slaps-another-security-band-aid-on-itunes/9598

• Apple - Apple Computers, Inc.