Tuesday marked a busy day for alternative browser security updates with patches from both Apple and Mozilla.

An update to Apple's Safari browser resolves three vulnerabilities for Windows and two for OS X. One of the flaws is particular to Windows while the other two involve Safari's WebKit engine and affect both Mac and Win flavours of the browser.

All three of the vulnerabilities potentiality allow malicious code injection onto unpatched systems and therefore should be treated as high-priority, critical patches. Users are advised to update to Safari 5.0.2 and Safari 4.1.2 to guard against drive-by download attacks made possible by the flaws, as explained in an advisory from Apple here.

Mozilla also released an updated version of Firefox on Tuesday. Firefox version 3.6.9 resolves 14 vulnerabilities, 10 of which are critical, as explained here. Firefox shares a common codebase with Mozilla's Thunderbird email client and the SeaMonkey application suite, so both these packages also need updating to Thunderbird 3.1.3 and SeaMonkey 2.0.7, respectively. ®

Related stories

• Mozilla showers Firefox, Thunderbird with updates (10 December 2010)
• Firefox update plugs 9 security flaws (20 October 2010)
• Mozilla puts brakes on auto Firefox updates (15 September 2010)
• Firefox 4 beta gets hard on Windows (8 September 2010)
• MS probes mystery IE bug (6 September 2010)
• iTunes update plugs WebKit flaw (2 September 2010)
• Firefox, uTorrent, and PowerPoint hit by Windows DLL bug (24 August 2010)
• FAM Microsoft names September for IE9 beta (29 July 2010)
• Firefox update guards hen house (21 July 2010)
• IE and Safari lets attackers steal user names and addresses (20 July 2010)
• Mozilla sextuples bug bounty to $3,000 (19 July 2010)
• Rancid IE6 'more secure' than Chrome and Opera US bank says (28 June 2010)
• Google takes it to 11 on Chrome security fix (11 June 2010)
• Safari purged of decade-old browser history leak (8 June 2010)