Get the latest version of Safari for your Mac. Featured topics. About pop-up ads and windows in Safari. Learn how to block pop-up windows and handle persistent ads on your iPhone, iPad, iPod touch, or Mac. Intelligent Tracking in macOS. Safari now uses machine learning to identify advertisers and others who track your online. Table of versions: Safari 0/1.x Minor version WebKit Operating System Release date Features 0.8 48 Mac OS X v10.2 - Mac OS X v10.3: January 7, 2003 Public Beta. Initial release at Macworld San Francisco.: 0.9.
Safari for Mac
Safari is included with your Mac operating system.
Updating Safari
To keep Safari up to date for the version of macOS you're using, install the latest macOS updates.
The most recent version of macOS includes the most recent version of Safari. For some earlier versions of macOS, Safari might also be available separately from the Updates tab of the App Store.
Reinstalling Safari
![Safari For Mac 9 Safari For Mac 9](/uploads/1/1/7/7/117735171/560143935.jpg)
![Safari For Mac 9 Safari For Mac 9](/uploads/1/1/7/7/117735171/433258849.jpg)
If you deleted Safari and don't have a Time Machine backup or other backup, reinstall macOS to put Safari back in your Applications folder. Reinstalling macOS doesn't remove data from your computer.
Safari 9.1 Download For Mac
Before reinstalling, you might want to use Spotlight to search for Safari on your Mac. If you find it, but it's no longer in your Dock, just drag it to the Dock to add it back.
Safari for Windows
Apple no longer offers Safari updates for Windows. Safari 5.1.7 for Windows was the last version made for Windows, and it is now outdated.
For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To learn more about Apple Product Security, see the Apple Product Security website.
For information about the Apple Product Security PGP Key, see How to use the Apple Product Security PGP Key.
Where possible, CVE IDs are used to reference the vulnerabilities for further information.
To learn about other security updates, see Apple security updates.
Safari 9
- SafariAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: Visiting a malicious website may lead to user interface spoofingDescription: Multiple user interface inconsistencies may have allowed a malicious website to display an arbitrary URL. These issues were addressed through improved URL display logic.CVE-IDCVE-2015-5764 : Antonio Sanso (@asanso) of AdobeCVE-2015-5765 : Ron MasasCVE-2015-5767 : Krystian Kloskowski via Secunia, Masato Kinugawa
- Safari DownloadsAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: LaunchServices' quarantine history may reveal browsing historyDescription: Access to LaunchServices' quarantine history may have revealed browsing history based on file downloads. This issue was addressed through improved deletion of quarantine history.
- Safari ExtensionsAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: Local communication between Safari extensions and companion apps may be compromisedDescription: The local communication between Safari extensions such as password managers and their native companion apps could be comprised by another native app. This issue was addressed through a new, authenticated communications channel between Safari extensions and companion apps.
- Safari ExtensionsAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: Safari extensions may be replaced on diskDescription: A validated, user-installed Safari extension could be replaced on disk without prompting the user. This issue was addressed by improved validation of extensions.CVE-IDCVE-2015-5780 : Ben Toms of macmule.com
- Safari Safe BrowsingAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: Navigating to the IP address of a known malicious website may not trigger a security warningDescription: Safari's Safe Browsing feature did not warn users when visiting known malicious websites by their IP addresses. The issue was addressed through improved malicious site detection.Rahul M (@rahulmfg) of TagsDock
- WebKitAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: Partially loaded images may exfiltrate data across originsDescription: A race condition existed in validation of image origins. This issue was addressed by improved validation of resource origins.CVE-IDCVE-2015-5788 : Apple
Apple Home Page Browser
- WebKitAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code executionDescription: Multiple memory corruption issues existed in WebKit. These issues were addressed through improved memory handling.CVE-IDCVE-2015-5789 : AppleCVE-2015-5790 : AppleCVE-2015-5791 : AppleCVE-2015-5792 : AppleCVE-2015-5793 : AppleCVE-2015-5794 : AppleCVE-2015-5795 : AppleCVE-2015-5796 : AppleCVE-2015-5797 : AppleCVE-2015-5798 : AppleCVE-2015-5799 : AppleCVE-2015-5800 : AppleCVE-2015-5801 : AppleCVE-2015-5802 : AppleCVE-2015-5803 : AppleCVE-2015-5804 : AppleCVE-2015-5805CVE-2015-5806 : AppleCVE-2015-5807 : AppleCVE-2015-5808 : Joe VennixCVE-2015-5809 : AppleCVE-2015-5810 : AppleCVE-2015-5811 : AppleCVE-2015-5812 : AppleCVE-2015-5813 : AppleCVE-2015-5814 : AppleCVE-2015-5815 : AppleCVE-2015-5816 : AppleCVE-2015-5817 : AppleCVE-2015-5818 : AppleCVE-2015-5819 : AppleCVE-2015-5821 : AppleCVE-2015-5822 : Mark S. Miller of GoogleCVE-2015-5823 : Apple
- WebKitAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: An attacker may be able to create unintended cookies for a websiteDescription: WebKit would accept multiple cookies to be set in the document.cookie API. This issue was addressed through improved parsing.CVE-IDCVE-2015-3801 : Erling Ellingsen of Facebook
- WebKitAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: The Performance API may allow a malicious website to leak browsing history, network activity, and mouse movementsDescription: WebKit's Performance API could have allowed a malicious website to leak browsing history, network activity, and mouse movements by measuring time. This issue was addressed by limiting time resolution.CVE-IDCVE-2015-5825 : Yossi Oren et al. of Columbia University's Network Security Lab
- WebKitAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: Visiting a malicious website may lead to unintended dialingDescription: An issue existed in handling of tel://, facetime://, and facetime-audio:// URLs. This issue was addressed through improved URL handling.CVE-IDCVE-2015-5820 : Guillaume Ross, Andrei Neculaesei
- WebKit CSSAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: A malicious website may exfiltrate data cross-originDescription: Safari allowed cross-origin stylesheets to be loaded with non-CSS MIME types which could be used for cross-origin data exfiltration. This issue was addressed by limiting MIME types for cross-origin stylesheets.CVE-IDCVE-2015-5826 : filedescriptior, Chris Evans
Safari For Mac 10.8.5
- WebKit JavaScript BindingsAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: Object references may be leaked between isolated origins on custom events, message events and pop state eventsDescription: An object leak issue broke the isolation boundary between origins. This issue was addressed through improved isolation between origins.CVE-IDCVE-2015-5827 : Gildas
- WebKit Page LoadingAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: WebSockets may bypass mixed content policy enforcementDescription: An insufficient policy enforcement issue allowed WebSockets to load mixed content. This issue was addressed by extending mixed content policy enforcement to WebSockets.Kevin G. Jones of Higher Logic
- WebKit Plug-insAvailable for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11Impact: Safari plugins may send an HTTP request without knowing the request was redirectedDescription: The Safari plugins API did not communicate to plugins that a server-side redirect had happened. This could lead to unauthorized requests. This issue was addressed through improved API support.CVE-IDCVE-2015-5828 : Lorenzo Fontana
FaceTime is not available in all countries or regions.