Apple Plugs 13 Mac OS X Security Holes

Apple late Tuesday issued Security Update 2005-009 containing 13 fixes for security vulnerabilities, two of which only affect server versions of Mac OS X. The update plugs holes in Apache, CoreFoundation, curl, OpenSSL and fixes four flaws in Apple's Safari Web browser.

Two of the updates for Safari cover problems in JavaScript, while another corrects a problem with overlong file names in which downloads could be saved to a different location than requested. Safari's WebKit rendering engine also contained a heap overflow that could potentially lead to the execution of arbitrary code. Mac OS X users can download the patch through Software Update.