Feeds

Firefox update fixes four critical flaws

Laggard 2.x users urged to upgrade

Build a business case: developing custom apps

Users of Firefox need to update their browser software again following the publication of patches by Mozilla on Wednesday.

Both supported versions of Firefox need patching but the 2.x version of the popular open source browser is most in need of a retool. Firefox 2.0.0.18 addresses 11 security vulnerabilities, six of which are classified as critical. Meanwhile, on the other track, Firefox 3.0.4 lances nine security vulnerabilities, four of which are critical.

The critical flaws in Firefox 3.x cover a vulnerability in the session restore feature that could allow cross-site scripting attacks and a separate memory corruption flaw as well as code injection risks involving the nsFrameManager and http-index-format parser of the browser. Mozilla's advisory explains the bugs in greater depth here.

Firefox 3.0.4 also fixes a slew of stability and performance glitches.

Mozilla's developers urge those left behind on the Firefox 2.x release to upgrade to Firefox 3.x, warning that it will stop issuing stability and security patches for the older release next month.

The SeaMonkey internet application suite evolved from the same code base as Mozilla's Application Suite and needs patching against the same 11 flaws as Firefox 2.x. Seamonkey, a community-driven project separate from Mozilla since, advises users to upgrade to Seamonkey 1.1.13. ®

Boost IT visibility and business value

More from The Register

next story
KDE releases ice-cream coloured Plasma 5 just in time for summer
Melty but refreshing - popular rival to Mint's Cinnamon's still a work in progress
Leaked Windows Phone 8.1 Update specs tease details of Nokia's next mobes
New screen sizes, dual SIMs, voice over LTE, and more
PEAK LANDFILL: Why tablet gloom is good news for Windows users
Sinofsky's hybrid strategy looks dafter than ever
Fiendishly complex password app extension ships for iOS 8
Just slip it in, won't hurt a bit, 1Password makers urge devs
Mozilla keeps its Beard, hopes anti-gay marriage troubles are now over
Plenty on new CEO's todo list – starting with Firefox's slipping grasp
Apple: We'll unleash OS X Yosemite beta on the MASSES on 24 July
Starting today, regular fanbois will be guinea pigs, it tells Reg
Another day, another Firefox: Version 31 is upon us ALREADY
Web devs, Mozilla really wants you to like this one
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Maximize storage efficiency across the enterprise
The HP StoreOnce backup solution offers highly flexible, centrally managed, and highly efficient data protection for any enterprise.