Filed under: Internet, Software Update
Safari 3.1.1 released
Safari 3.1.1 is now available for both Windows and OS X. According to Apple, this update "includes improvements to stability, compatibility and security."On the security front, this security bulletin outlines the changes. It appears as if a vulnerability existed that could allow malicious sites to spoof URL headers or execute arbitrary code. There are two issues that specifically affect the Windows version of Safari, so users on both platforms should be sure to update.
Just a reminder -- some plugins, like Saft, will stop working after installing the update. Visit the plugin author's homepage to download the newest versions as they become available.
Thanks Ben!
![TUAW [Cafepress]](http://www.blogsmithmedia.com/www.tuaw.com/media/tuaw-cafepress-promo.png)
Reader Comments (Page 1 of 2)
ben said 5:44PM on 4-16-2008
no worries, i should be working but dam my mac fetish i cannot stop checking for everything mac.
Reply
Eric said 5:51PM on 4-16-2008
I just updated Safari last night after holding out...
Reply
Morpheusmorph said 5:51PM on 4-16-2008
At the end of the security bulletin it says:
"Credit to Charlie Miller for reporting these issues."
Nice Apple =)
Reply
Joshua Ochs said 5:55PM on 4-16-2008
Apple always credits those who report issues. Which is why you never saw David Maynor on any of those security updates. =p
Joshua Ochs said 5:54PM on 4-16-2008
Just a reminder - those aren't plugins, they're sketchy hacks using completely undefined and unsupported interfaces to screw with things (this includes Saft, Chax, Inquisitor, PithHelmet, etc, etc). They should not be condoned as "plugins", because they're not.
These things are every bit as bad as INITs and extensions of OS 9. For example, how else could Logitech Control Center disable Growl?
http://groups.google.com/group/growldiscuss/msg/a741b6a430b299b7
Reply
Luigi193 said 5:59PM on 4-16-2008
Why the hostilities towards pluggins? I couldn't live without SafariBlock!
Quine said 6:08PM on 4-16-2008
thanks for the link Josh, it was a very interesting read. I share your opinions on these "plugins" and never use them.
jus10 said 6:11PM on 4-16-2008
Well if Apple actually provided a standard extension interface we wouldn't need the input manager route.
I'm not using Safari without Safari Adblock. Its that simple.
Simon Arch said 2:10PM on 4-17-2008
CDEVs and INITs weren't a problem. Sloppy programming and extension overload were the problem. I knew some people who loaded up their Classics with fifty extensions and wondered why their system crashed or ran super-slow. If you kept your System Folder tidy and only kept the extensions you needed you didn't have a problem.
It should also be noted that INITs and CDEVs were the Apple-approved way to extend your system, not unapproved hacks.
Ian said 6:00PM on 4-16-2008
Crap. Does this mean I'll have a fresh round of Apple nagging me to "Update" the non-existant install of Safari on Windows?
Reply
Mauricio Armada said 6:16PM on 4-16-2008
Could this update be the one to fix the problem that allowed the winner of the cansecwest competition to hack into the macbook air in two minutes flat??
Reply
STL said 6:22PM on 4-16-2008
It was the 2nd day of the contest when Charlie Miller directed the MacBook Air to the site he'd spent time setting up prior to the start of the contest.
As mentioned by Morpheusmorph
"At the end of the security bulletin it says:
"Credit to Charlie Miller for reporting these issues."
Nice Apple =)"
Reply
Goomba said 6:24PM on 4-16-2008
But is it snappier?
Reply
Simon said 6:26PM on 4-16-2008
Why the hell do they force a reboot on this. Argh.
Reply
andrew Harrison said 11:34PM on 4-16-2008
i was going to say the same thing. i just rebooted from the quicktime update, first time in about 10 day. it's a PITA.
Simon Arch said 3:23PM on 4-17-2008
Because chances are they've updated WebKit or core or whatever the hell they call it these days. What I want to know is why the reboot had to take two minutes. I'd begun to think the update had hosed my system.
5cents said 6:37PM on 4-16-2008
Did Safari have a lozenge button before? Cos' it doesn't now and I can't remember if it did back then...
Reply
Blaktornado said 7:01PM on 4-16-2008
Inquisitor and Safari Adblock still work :)
Reply
blinkcowz182 said 7:30PM on 4-16-2008
Hopefully 1password doesn't have any issues. I installed the update without thinking about it but haven't restarted yet.
Reply
Sandy Santra said 12:30PM on 4-17-2008
The 1Password developer responded to me in an email:
Thanks for taking the time to contact us.
1Password is ready for the new Safari 3.1.1 release. I'm running Safari 3.1.1 now with the latest 2.6 beta of 1Password, but the current 2.5.12 'official' release of 1Password will also work with the new Safari update.