Mozilla releases security fixes for Firefox

By
Follow google news

The Firefox web browser has been patched for security flaws, four of which were identified as "critical" by Mozilla.

The Firefox web browser has been patched for security flaws, four of which were identified as "critical" by Mozilla.

A total of nine security flaws were fixed in the new release.

The patches include a fix for flaws such as one that allows scripts from page content to run with elevated privileges. With this, an attacker could cause an object such as a browser sidebar to interact with web content so that an attacker's code had elevated privileges.

Another bug fixed involved a condition that resulted when navigating away from a web page during the loading of a Java applet. This could have resulted in freed memory that an attacker could write to before it is reused -- and then run arbitrary code on the victim's computer.

The other critical issues were problems of memory corruption crashes, which could be exploited to run arbitrary code, and null owner document event listeners, which could enable a malicious event handler to execute arbitrary JavaScript code.

The new version of Firefox, 3.0.11, is available for Windows, Mac and Linux users. Mozilla said that it strongly recommends that users upgrade to the latest release.


See original article on scmagazineus.com


Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
firefoxfixesformozillareleasessecurity

Sponsored Whitepapers

Fintech compliance made fast and secure
Fintech compliance made fast and secure
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
2025 Security operations insights: Three-quarters of security leaders need something new in SIEM
2025 Security operations insights: Three-quarters of security leaders need something new in SIEM
Sumo Logic named in the 2025 Gartner Critical Capabilities for Security Information and Event Management (SIEM)
Sumo Logic named in the 2025 Gartner Critical Capabilities for Security Information and Event Management (SIEM)
The cloud tipping point
The cloud tipping point

Events

Most Read Articles

NSW Health clinicians "normalise" bypass of cyber security controls

NSW Health clinicians "normalise" bypass of cyber security controls
ServiceNow nears deal to buy cyber security startup

ServiceNow nears deal to buy cyber security startup
UK government was hacked in October, minister confirms

UK government was hacked in October, minister confirms
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?