Mozilla Thursday 13 patched vulnerabilities in Firefox, including a patch re a bug that was broken in March 2010.
Eleven of the 13 were rated "critical", the representative of the bugs that hackers could in theory threat level allows to divert a system or it infect with malware. The two remaining vulnerabilities, one marked "top" and the second has been marked as "moderate".
Versions of hotfixes have been designated for Firefox 3.6.13 and Firefox 3.5.16 by Mozilla, which continues to provide updates to security for Firefox 3.5.
In the past, Mozilla supported older versions of browsers for approximately six months after the release of the next; version If it had followed this practice with Firefox 3.5, Mozilla would have taken retire browser in July 2010, six months after the debut of Firefox 3.6.
13 Patch is a crack a flaw in Firefox second exposed by Firebug, the popular Web development add-on debugger.
Firstly corrected March - when Mozilla has said that it will affect not for Firefox 3, 6 - Thursday repetition was necessary because the researcher who originally reported the fault that this fix might be avoided.
The new patch applies to Firefox 3.5 and 3.6, both said Mozilla.
Other parcels addressed bugs memory for the browser engine, integer and buffer overflows and location bar SSL spoofing flaw. The update fixes also near 70 defects instead of security, including several stability bugs Mozilla followed by reports of incident submitted by the user.
Like Google when it patches chrome, Mozilla temporarily bar public access to the technical details of the critical vulnerabilities that it plots up to what most users have been notified of the update. The company change Bugzilla and bug filing database, for example, allows anyone to see the lists for the two non-critical vulnerabilities in update yesterday, but blocking access to critical faults 11.
Upgrading major next Firefox 4, was to achieve 8 Beta on 30 November - later postponed to December 9 - but was postponed once, according to the notes on the Mozilla site. It now appears before December 16. In October, Mozilla has acknowledged that it could not keep its initial development schedule and announced for Firefox 4 send not at the beginning of 2011.
Firefox has been steadily losing share such use as measured by the company settings Web Net Applications. Last month, the global share of the browser slipped to 22.8%, its lowest mark since August 2009.
Users can update Firefox 3.6.13 by downloading the new edition or by selecting "Check for Updates" in the help browser menu. Firefox 3.5 users can obtain version 3.5.16 Update tool.
Gregg Keizer covers Microsoft issues security, Apple, Web browsers and General technology breaking news for Computerworld. Follow Gregg on Twitter at @ gkeizer or you subscribe to flux RSS de Gregg. Her address is gkeizer@ix.netcom.com.
Learn more about security in Computerworld security topic Center.
No comments:
Post a Comment