Firefox 3.0.6 fixes yet another JavaScript bug
Coffee bean counters
Customer Success Testimonial: Recovery is Everything
Mozilla has released an update to Firefox 3.0 that fixes half a dozen serious security glitches in the web browser.
The group’s developers, who have been struggling to get the next version of Firefox 3.1 out the door due to problems mainly associated with Mozilla’s new TraceMonkey JavaScript engine, labelled six bug fixes in version 3.0.6 as critical.
It released the update yesterday and confirmed that the worst vulnerability to have been addressed was, once again, a JavaScript issue.
Mozilla said the bug, which also affects its Thunderbird email client and SeaMonkey internet suite, could allow a wrongdoer to run dodgy code on exploited machines.
The Firefox 3.0.6 update also comes loaded with improved scripted commands, including extensions such as Adblock Plus, to work properly with plug-ins, said Mozilla.
As we reported last week, Mozilla’s developers have been struggling to nail a release date for the third beta of Firefox 3.1, following a series of bugs in the browser including problems with its TraceMonkey JavaScript engine.
"At this time, we don't have a good estimate for when we'll be done," Mozilla said on 28 January. “Many of the bugs are proving to be tricky and complicated to fully resolve." ®
COMMENTS
FF patches make way to new bugs
since 3.0.5, FF started crashing on me, that wouldnt matter so much if it was just every now and then but combined with the impossibility of ending the process in the task manager makes it more than annoying! having upgraded to 3.0.6 hoping the issue would be resolved, i'm afraid it hasn't! Only way is to reboot machine!..i've never used IE so much!
Hundreds of posts on their 'forum' from angry/annoyed users in the same case but Mozilla guys have gone quiet...
RE: Upgrade???
I don't consider it an upgrade either, but you forget that Mozilla generally fixes security issues ASAP. While this sometimes results in only partly blocking an exploit with the the first patch, this is still preferable to MS's attitude of denying the existence of security flaws until some researcher tires of MS's intransigence and release proof of concept exploit code.
And while Firefox runs IE a close second in number of vulnerabilities over the past 3 years, with 301 vs 350 for IE, according to NIST, I think I will take my chances with FF's "fix early and often" attitude to security, rather than IE's "fix only when have to".
Interestingly I can only find 61 vulnerabilites in NIST for Opera for the same period. Maybe I should switch full-time to Opera?
Upgrade????
Upgrade??? It's a patch FFS. Call it what it is, can't FF users accept they use an insecure browser.
IT infrastructure monitoring strategies
Agentless Backup is Not a Myth
Top 10 SIEM implementer’s checklist
Steps to Take Before Choosing a Business Continuity Partner
Enabling efficient data center monitoring
