While many are celebrating the Summer Solstice, Mozilla developers are celebrating the rapid release of Firefox 5.
Although the latest version reportedly includes more than 1,000 improvements and performance enhancements, the update from version 4 to version 5 feels more like a security update than a new version.
As indicated at Security Advisories for Firefox, the vulnerabilities listed below were Fixed in Firefox 5. This includes the WebGL graphics memory stealing issue addressed in at Mozilla Security Blog.
Fixed in Firefox 5
MFSA 2011-28 Non-whitelisted site can trigger xpinstall
MFSA 2011-27 XSS encoding hazard with inline SVG
MFSA 2011-26 Multiple WebGL crashes
MFSA 2011-25 Stealing of cross-domain images using WebGL textures
MFSA 2011-22 Integer overflow and arbitrary code execution in Array.reduceRight()
MFSA 2011-21 Memory corruption due to multipart/x-mixed-replace images
MFSA 2011-20 Use-after-free vulnerability when viewing XUL document with script disabled
MFSA 2011-19 Miscellaneous memory safety hazards (rv:3.0/1.9.2.18)
The upgrade to Firefox 5 will be offered to users with Firefox 4 through the browser update mechanism. However, as the upgrade includes critical security updates, it is recommended that the update be applied as soon as possible. To get the update now, select Help > About Firefox > Check for Updates.
References
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...
0 comments:
Post a Comment