Thursday, March 5, 2009

New Version of Firefox Released

Mozilla has released a new version of its Firefox web browser. Version 3.0.7 contains updates for following vulnerabilities:
MFSA 2009-11 URL spoofing with invisible control characters
MFSA 2009-10 Upgrade PNG library to fix memory safety hazards
MFSA 2009-09 XML data theft via RDFXMLDataSource and cross-domain redirect
MFSA 2009-08 Mozilla Firefox XUL Linked Clones Double Free Vulnerability
MFSA 2009-07 Crashes with evidence of memory corruption (rv:1.9.0.7)

Mozilla recommends all Firefox users to update to the latest version. Firefox 2.x.x version users should update to the 3.0.7 as well since 2.x.x versions are not supported anymore and contain known security vulnerabilities.

Update can be made with automatic update functionality in Firefox or by installing new versions from http://getfirefox.net.

Details about the update can be read from releasenotes of 3.0.7 version.

No comments: