Firefox update fixes bug brace
Booby trap link bug defused
Mozilla has pushed out a new version of Firefox that fixes a brace of security bugs, barely a fortnight after its last update.
Firefox version 220.127.116.11 addresses a critical vulnerability that means unescaped URIs (uniform resource identifiers) are passed to external programs. The serious security flaw, discovered by security researchers last week, created a means for hackers to install malware on a Windows PC simply by convincing potential marks to click on a doctored link.
The update also fixes a less serious privilege escalation vulnerability involving Firefox add-ons.
The release - available in Mac, Windows, and Linux flavours - will be automatically pushed out to users within the next two days. Mozilla's release notes can be found here.
Users of Thunderbird, Firefox's email client, and Mozilla's SeaMonkey suite also need to upgrade as a result of the same bugs to versions 18.104.22.168 and 1.1.4, respectively.
The update is the second from Mozilla in two weeks. Firefox version 22.214.171.124, the previous update, fixed a number of memory corruption and privilege escalation flaws, including a high-profile bug involving launching Firefox from Internet Explorer. ®
@ Andy Bright
This comment stream follows the same route as normal.
1. Article points out that a Non-MS product needs an update.
2. Troll pipes up that MS makes a better product (usually includes a ref to fanboy - choose your favourite pretentious spelling).
3. Someone points out that there is nothing superior about said MS product.
4. That someone is automatically a fanboy.
Is that what you mean by “the same thing happening”? Yes it is tedious that every time something non-MS is criticised (however slight) then an MS supporter is there to put the boot in early.
Odd isn't it
And the same thing happens if anyone has the temerity to report on Fanboiy software in general is patched.
You can't even mention that Firefox, Mac OS or Linux (all of which I use in various capacities) has a security update without muppets feeling the need to point out IE and Windows appear to require more and that they often take months too long to be released.
We know this already - stop bleating pathetic defensive blather just because someone has pointed out it's impossible to write perfect software..
The article let anyone, who for some strange reason wasn't automatically updated by Firefox itself, know there was a fix available. Why is that a problem? Why does anything produced by Microsoft even need to be brought up?
Re: wake up
As long as you filthbags keep visiting those nasty websites for free warez and a quick peek at Paris's snizz. Then the hackers will always have a avenue to deliver their code.
Firefox with NoScript perfectly handles all the porn sites that none of us ever visits.
Video of Paris anyone?