Skip to comments.Mozilla discloses fixes to Firefox flaws
Posted on 03/26/2010 10:27:21 AM PDT by ShadowAce
Mozilla patched more than one vulnerability in Firefox when it updated the browser to version 3.6.2 on Monday, the company confirmed today.
A total of 10 flaws were fixed in Firefox 3.6.2, according to Mozilla's security advisory page, but details of others have been withheld until the company updates the older Firefox 3.0 and Firefox 3.5 browsers. Mozilla is scheduled to ship the updates, Firefox 3.0.19 and Firefox 3.5.9, next Tuesday, March 30.
[ Earlier this week Mozilla issued the Firefox 3.6.2 update to fix a critical flaw in its browser. | Learn how to secure your systems with Roger Grimes' Security Adviser blog and newsletter, both from InfoWorld. ]
Mozilla accelerated the release of Firefox 3.6.2 because a Russian researcher had announced a critical vulnerability in how the browser decodes the Web Open Font Format (WOFF), a Web-based font standard. Only Firefox 3.6 supports WOFF.
However, four of the vulnerabilities already patched in Firefox 3.6.2 also apply to older editions of the browser. One of the 10 fixed flaws that Mozilla ranked as "low" in its four step scoring system, one tagged as "high" and two marked as "critical."
Mozilla patched those bugs last month when it issued Firefox 3.0.18 and Firefox 3.5.8.
Gregg Keizer covers Microsoft, security issues, Apple, Web browsers and general technology breaking news for Computerworld. Follow Gregg on Twitter at @gkeizer or subscribe to Gregg's RSS feed . His e-mail address is firstname.lastname@example.org .
Read more about security in Computerworld's Security Knowledge Center.
Correction: This story as originally posted erroneously stated that Mozilla had released technical details of unpatched vulnerabilities. Those flaws were actually patched in February; Mozilla kept that information secret. The article has been amended.
i stopped using firefox because it crashed on my win 7 multiple times per day.
I wish the Opera gui was closer to what seems to be developing as an industry standard. It’s faster and cleaner than firefox but when I gotta search for how to do stuff, it gets old...
microsoft strikes again...
Its still better than IE.
“i stopped using firefox because it crashed on my win 7 multiple times per day.”
I’ve never seen Firefox crash in W7.
I understood that the Firefox/Win 7 problem was in version 3.5 and 3.6 corrected it. Any confirmation from users??
New version is much better...so far.
“Ive never seen Firefox crash in W7.”
I’ve had real problems with it crashing in W7. And since the last update, I lost Adobe.
Just keep ‘em updated, fewer worries than with any M$ product.
I’ve tried and retried Opera probably 5 times since I’ve been at FR. I don’t like the GUI. If I have to look up anything about how to use the browser, it’s too complicated. I’m sticking with FF. Safari is my backup.