Mozilla patches Firefox

Mozilla patches Firefox

Mozilla updated Firefox on Friday to patch 14 vulnerabilities, three of them critical, but pushed out the new versions without fixing several flaws.

Firefox and Firefox, which originally were to be released last Wednesday, were delayed to patch a series of bugs, including some disclosed this month by Polish researcher Michael Zelewski. Two others forwarded to Mozilla developers by Zelewski, however, didn't make it into Friday's updates.

"Neither of those will make this release," said Daniel Veditz, of the Mozilla security in an e-mail. "It is important that we get the security fixes we have into the hands of our users."

Of the bugs filed by Zelewski but not fixed in the updates, the most serious is a memory corruption flaw that could let attackers inject code remotely into Firefox-equipped machines simply by duping users into visiting a malicious web page

Also unrepaired in the latest browser versions is a third Zelewski-discovered bug that could give cybercriminals a leg up when running phishing attacks.

Mozilla spelled out the security fixes in Firefox and here.

Firefox is nearly at the end of its supported lifespan. After April 24, Mozilla will stop issuing security and stability updates to that edition.

Firefox can be downloaded from the Mozilla Web site in versions for Windows, Mac OS X and Linux in 36 languages. Users can also update current editions with the Check for Updates command in the Help menu.

Follow Us

Join the newsletter!

Error: Please check your email address.

Tags Firefoxmozilla



Opening ice breaker sessions set the scene for EDGE 2017

Opening ice breaker sessions set the scene for EDGE 2017

​EDGE 2017 kicked off with an opening ice breaker session, providing a structured environment for channel executives to form and foster new relationships and business opportunities. Photos by Maria Stefina.​

Opening ice breaker sessions set the scene for EDGE 2017
Show Comments