Safari 4.0.2 Addresses Security, Stability


Apple (s aapl) has released version 4.0.2 of Safari for both OS X 10.4 and 10.5 (but not Snow Leopard), as well as Windows XP, Vista and 7 beta. The 40MB update is available through Software Update and download via Apple’s web site.

The release notes, cryptic as usual, state the update improved “the stability of the Nitro JavaScript engine and includes the latest compatibility and security fixes.” A Knowledge Base article states that 4.0.2 addresses two vulnerabilities: cross-site scripting attacks and arbitrary code execution. Both of these vulnerabilities require visiting “maliciously crafted web sites,” but nonetheless are excellent reasons to update. Of course, the Mac version requires a restart, as updating Safari updates WebKit and the associated frameworks.

Those hoping for other changes, like a return of page loading progress in the address bar, or the refresh button going back to the left of the address bar, will be disappointed. Top tabbers, those who preferred the short-lived experiment of tabs being in the title bar, are also going to be displeased. It’s time to let go. Upgrading from the Safari 4 beta has to happen sooner or later, and what better reason than better security?