Firefox gets updated to 3.5.4 and 3.0.15
MOZILLA HAS PATCHED both of its Firefox 3.5 and 3.0 web browsers today, to versions 3.5.4 and 3.0.15 respectively.
Overall, 11 critical bugs were fixed in Firefox 3.5.3 out of a total of 16 patches. Firefox 3.0.14 received 10 patches, with 5 fixes marked critical.
Several of the bugs might have enabled exploits that allowed malware writers to run unauthorised code on users' machines, including a bug in Firefox's GIF parser and bugs in several individual third party modules - liboggz, libvorbis and liboggplay - all of which were added in Firefox 3.5.
Four critical stability issues were also fixed across both versions of Firefox, which were marked as critical and upon which Mozzarella commented:
"Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code."
Mozilla strongly recommends that all Firefox users upgrade to the latest releases. You can do this by downloading the latest release from http://firefox.com/ or by selecting "Check for Updates" from the Firefox Help menu.
You can view the release notes for Firefox 3.5.4 here and for Firefox 3.0.15 here. µ
Share this:
ShareBusiness Intelligence Software
Customer Relationship Management (CRM)
Enterprise Accounting Software
Enterprise Resource Planning (ERP)
Enterprise Systems Management
The browser with the holes!
11 critical, what a good innings.
... that's SIX critical bugs, not 11.
John
What's your point. ALL software has bugs. At least I can feel safe knowing that these get addressed and patched ASAP. Unlike M$ and IE. Which is informed of bugs and they sweep it under the rug as long as possible until it gets out of hand or someone blows the whistle.
While it may be true that many bugs Microsoft is slow to publically address, many bugs simply can't be fixed on the fly because the fixes need to be tested on a variety of systems before deployment, lest the cure be more harmful than the original problem itself. Even if a problem is identified, some bugs require extensive rewrites in order to fix that particular bug, while leaving the other functionality intact.
That extensive testing and rewriting is made much faster if it is open source and people from all over the world can be involved in it. Many, many more can both identify and work on the problem.
So the same amount of work takes a lot less time with firefox due to the amount of people involved.
So fixes like this can get out much faster and the Firefox browser isn't exposed to security risks for as long a time as IE.
It is just a numbers game really...
@magnus
Yes many CAN work on it, but in reality it's only a small group that does, and that group is probably smaller than the group of people working on any such project at MS.
Not that I'd scream that the speed is the issue with MS security, it's the philosophy that is I'd say.
The Kings and Prophets in the Bible recorded their own errors or got their personal errors and mistakes recorded there in.
Today's numerous authorised [auto]biographies are mostly sugar and no salt and anybody reading them only learns to repeat by example the same errors and mistakes. Or the so called errors listed are the persons obvious mundane human limitation that everyone has.
The secrecy in software just begs to be discovered like any unauthorised biographies. If the author would tell it first like it is, it would push aside and out-scoop any attempts to embellished the truth on errors and mistakes. But if your hiding something...
Michael Jackson's Billy Jean playing in the Background: "...because the lie becomes the truth."
The crown of the open King belongs to FireFox.
The Kings and Prophets in the Bible recorded their own errors or got their personal errors and mistakes recorded there in.
Today's numerous authorised [auto]biographies are mostly sugar and no salt and anybody reading them only learns to repeat by example the same errors and mistakes. Or the so called errors listed are the persons obvious mundane human limitation that everyone has.
The secrecy in software just begs to be discovered like any unauthorised biographies. If the author would tell it first like it is, it would push aside and out-scoop any attempts to embellished the truth on errors and mistakes. But if your hiding something...
Michael Jackson's Billy Jean playing in the Background: "...because the lie becomes the truth."
The crown of the open King belongs to FireFox.