Mozilla has release a new version of the popular Firefox web browser. Version 2.0.0.12.
This release fixes some important security vulnerabilities that were discovered in 2.0.0.11.
MFSA 2008-11Â Web forgery overwrite with div overlay
MFSA 2008-10 URL token stealing via stylesheet redirect
MFSA 2008-09 Mishandling of locally-saved plain text files
MFSA 2008-08 File action dialog tampering
MFSA 2008-06 Web browsing history and forward navigation stealing
MFSA 2008-05 Directory traversal via chrome: URI
MFSA 2008-04 Stored password corruption
MFSA 2008-03 Privilege escalation, XSS, Remote Code Execution
MFSA 2008-02 Multiple file input focus stealing vulnerabilities
MFSA 2008-01 Crashes with evidence of memory corruption (rv:1.8.1.12)
Download the latest version of Firefox here.
Source: Mozilla
A new update for Firefox was released just 4 days after the 2.0.0.10 update was made available to the public. The latest update 2.0.0.11 fixes a few compatibulity issues that showed up after upgrading to 20.0.0.10. Nothing serious, just minor extension issues and website compatibility issues.
Make sure you have the latest version. This will happen automatically but if it does not then get the latest version here.
Source: Mozilla
Firefox 2.0.0.10 has been released. This is a security update which fixes the issues listed below.
MFSA 2007-39 Referer-spoofing via window.location race condition
MFSA 2007-38 Memory corruption vulnerabilities (rv:1.8.1.10)
MFSA 2007-37 jar: URI scheme XSS hazard
Firefox will automatically update itself to the latest version but if it does not you can download the latest version from the Firefox homepage. My Firefox is up2date, is yours?
Source: Mozilla Developer News
Firefox 2.0.0.9 was released today. 2.0.0.9 is a stability release to attention some bugs that surfaced after the recent security update 2.0.0.8. Fixes for this release as quoted from Mozilla below,
- Bug 400406 - Firefox will ignore the “clear� CSS property when used beneath a box that is using the “float� property. There is a temporary workaround JS/CSS code available for web developers with affected layouts.
- Bug 400467 - Windows Vista users will get “Java not found� or “Java not working� errors when trying to load Java applets after updating. To fix this, users can right-click the Firefox icon and “Run as administrator�, then browse to a page with a Java applet — doing this once will fix the problem and permanently restore Java functionality.
- Bug 396695 - Add-ons are disabled after updating. Users can fix this problem by opening their profile folder and removing three files (extensions.rdf, extensions.ini and extensions.cache)
- Bug 400421 - Removing a single area element from an image map will cause the entire map to disappear. There is no workaround available at this time.
- Bug 400735 - Some Windows users may experience crashes at startup. There is no workaround available at this time.
Firefox will automatically run the update tool and bring your Firefox up to the current version but if for some reason that does not work for you then get the latest release here.
Source : Mozilla Developer News
Firefox 2.0.0.8 has been released. 2.0.0.8 is a security patch so make sure your firefox browser is up2date.
Below are the list of fixes in this release taken from the Mozilla Foundation Security Advisories page.
MFSA 2007-36 URIs with invalid %-encoding mishandled by Windows
MFSA 2007-35 XPCNativeWrapper pollution using Script object
MFSA 2007-34 Possible file stealing through sftp protocol
MFSA 2007-33 XUL pages can hide the window titlebar
MFSA 2007-32 File input focus stealing vulnerability
MFSA 2007-31 Browser digest authentication request splitting
MFSA 2007-30 onUnload Tailgating
MFSA 2007-29 Crashes with evidence of memory corruption (rv:1.8.1.8)
