Firefox Security Holes Plugged

From PC World: Mozilla on Thursday patched 13 vulnerabilities in Firefox, including a re-patch for a bug that was thought quashed in March 2010.

Eleven of the 13 were rated "critical," the threat level representing bugs that hackers could conceivably use to hijack a system or infect it with malware. Of the two remaining vulnerabilities, one was labeled "high" and the second was tagged as "moderate."

The patched versions were designated Firefox 3.6.13 and Firefox 3.5.16 by Mozilla, which continues to provide security updates for Firefox 3.5. (See also "15 Must-Have Firefox Add-ons")

In the past, Mozilla has supported older versions of browsers for approximately six months after the release of the next version; if it had followed that practice with Firefox 3.5, Mozilla would have retired the browser in July 2010, six months after the debut of Firefox 3.6.

One of the 13 patches is a second crack at a flaw in Firefox exposed by Firebug, the popular Web development and debugger add-on.

View: Article @ Source Site