Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: InfoSec Handlers Diary Blog InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Mozilla Firefox Updates

Published: 2010-06-23
Last Updated: 2010-06-23 03:59:06 UTC
by Scott Fendley (Version: 1)
1 comment(s)

Earlier today,  Mozilla released the newest version of Firefox.  

Firefox 3.6.4 corrects 7 vulnerabilities which range from critical issues such as denial of service or arbitrary code execution bugs along with a few lower level issues.  The full list of vulnerabilities corrected is located in the release notes.  In addition, this release of Firefox provides much better handling of plugin crashes.  Should a plugin crash or freeze while viewing a website, Firefox now allows the plugin to crash without taking down the entire browser.  This is a very useful feature for those of us who keep many many tabs or windows open during the course of the day and get very irritated when you open that one website that has some odd flash or quicktime media that causes the plugin to abnormally end.  YAY!

Firefox 3.5.10 also was released and corrects for 9 vulnerabilities of which 6 are rated as critical. The 3.5.x tree of Firefox will continue to receive security updates for 2 more months, so it is time to prepare to jump to 3.6.x very soon.  More details on the security issues are listed in the release notes.

Thanks to all of our readers who were on top of these releases tonight and alerted us of them.

Scott Fendley -- ISC Handler on Duty

Keywords: Firefox Mozilla
1 comment(s)
Diary Archives