Firefox zero-days discovered

Mozilla patches browser.

Firefox users should install an immediate patch, after with two critical bugs discovered that are reportedly being exploited by attackers.

The first is due to a use-after-free memory corruption issue in the Extensible Stylesheets Language Transformations (XSLT) feature, in which removing a parameter during processing could trigger an exploitable bug.

A second memory corruption bug in the WebGPU graphics acceleration feature could also trigger a use-after-free condition, and be used to escape the sandbox system protection feature in Firefox.

Mozilla has issued updated versions of Firefox, including 97.0.2, ESR 91.6.1, Android 97.3
and its privacy-oriented Focus 97.3 web browser, that handles the vulnerabilities.

In both cases, the bugs were reported to Mozilla by researchers from China-based 360 ATA.

Mozilla did not disclose further details on the reported attacks.

Beyond Bank's CIO exits

Gartner sees slowing demand at consulting unit

Intel CEO says company will make GPUs

DTA cuts government's biggest tech buyers out of vendor talks

Cyconsol Unlocks Growth Potential for Cyber Vendors in Australia

Firefox zero-days discovered

Mozilla patches browser.

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

Popular text editor Notepad++ was hacked to drop malware

WhatsApp unveils high-security mode

NSW to overhaul state cyber emergency plan

'Moltbook' social media site for AI agents had big security hole

Most popular tech stories

Nissan's A/NZ finance arm embarks on $35m digital transformation

NSW gov to make AI risk assessments less "subjective"

Macquarie Bank unveils customer-facing 'Q' AI agent

Blacktown City Council trials AI for development applications

Australian Public Service plans whole-of-gov "learning technology ecosystem"

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

IoT Impact: Patrick Bossert to discuss digital twins for Australia's electricity networks

'Touch-free' smartphone controlled with head movements

Photos: The 2024 IoT Awards winners

Photos: Australian industry explores data for net zero

Beyond Bank's CIO exits

Gartner sees slowing demand at consulting unit

Intel CEO says company will make GPUs

DTA cuts government's biggest tech buyers out of vendor talks

Cyconsol Unlocks Growth Potential for Cyber Vendors in Australia

Firefox zero-days discovered

Mozilla patches browser.

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

Popular text editor Notepad++ was hacked to drop malware

WhatsApp unveils high-security mode

NSW to overhaul state cyber emergency plan

'Moltbook' social media site for AI agents had big security hole

Most popular tech stories

Nissan's A/NZ finance arm embarks on $35m digital transformation

NSW gov to make AI risk assessments less "subjective"

Macquarie Bank unveils customer-facing 'Q' AI agent

Blacktown City Council trials AI for development applications

Australian Public Service plans whole-of-gov "learning technology ecosystem"

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

IoT Impact: Patrick Bossert to discuss digital twins for Australia's electricity networks

'Touch-free' smartphone controlled with head movements

Photos: The 2024 IoT Awards winners

Photos: Australian industry explores data for net zero

Log In