Friday, October 19, 2007

New version of Firefox was released yesterday

A new version of Firefox was released yesterday. It's available on the official Mozilla website and through the update check in Firefox itself. Two critical, five moderate and two low security vulnerabilities have been fixed in the new version which makes it a recommended update for all Firefox users.

Fixed in Firefox

MFSA 2007-36 URIs with invalid %-encoding mishandled by Windows

MFSA 2007-35 XPCNativeWrapper pollution using Script object

MFSA 2007-34 Possible file stealing through sftp protocol

MFSA 2007-33 XUL pages can hide the window titlebar

MFSA 2007-32 File input focus stealing vulnerability

MFSA 2007-31 Browser digest authentication request splitting

MFSA 2007-30 onUnload Tailgating

MFSA 2007-29 Crashes with evidence of memory corruption (rv:

Get Firefox here.

No comments: