Both Apple and the US Computer Emergency Response Team are advising users and administrators to install all the updates immediately.
The company has issued a fix for 28 different components within Mac OS 10.4, 10.5 and Server.
Among the issues is a vulnerability for the Safari web browser which could allow an attacker to execute arbitrary code on a targeted system by way of a specially crafted RSS feed address.
Because the flaw was also present in the Windows version of Safari, the company issued a separate Safari update for XP and Vista users.
Apple has also issued security fixes for the Java components within Mac OS 10.4 and 10.5. That update addresses four different vulnerabilities, the most serious of which could allow for a malicious JavaScript program to obtain elevated privileges.
Users can receive all of the updates through Apple's Software Update component or manually through the Apple Support Downloads site.
iTnews Executive Retreat - Security Leaders Edition
_(1).jpg&h=140&w=231&c=1&s=0)
