Meet the Unmagnificent Seven: The critical holes plugged in Firefox update
The Old Man was right. Only the hackers win. We lost. We'll always lose
Firefox maker Mozilla has pushed out a new version of its web browser in which multiple security vulnerabilities have been fixed - and seven of them are rated as critical.
Firefox 24, released on Tuesday, grapples with a total of 17 exploitable flaws: the most dangerous of the squashed bugs, which could have allowed an attacker to remotely execute code or install software on a victim's computer, are:
- A garbage collection bug
- Memory corruption when scrolling a page
- Buffer overflow with multi-column, lists, and floats
- Use-after-free with <select> element
- Use-after-free in Animation Manager during stylesheet cloning
- Integer overflow in ANGLE library
- Miscellaneous memory safety hazards
The other 10 bugs are rated highly or moderately threatening. More details can be found on Mozilla's security advisory page here.
Firefox 24 is available in Windows, Mac OS X, Linux and Android flavours. The Android version of the cross-platform update includes WebRTC support for video calling. ®
Sponsored: DevOps and continuous delivery