The host is installed with Apple Safari before 5.0.1 or 4.1.1 and is prone to multiple use-after-free vulnerabilities. The flaws are present in the application, which fails to handle a (1) font-face or (2) use element in an SVG document.. Successful exploitation could allow attackers to execute arbitrary code or crash the service.