OPEN SOURCE SOFTWARE OUTFIT Mozilla has released Firefox 24, boosting its web browser with 17 security fixes.
The firm released the application today, saying that it has been shored up to deal with a mix of critical, high and moderate severity security threats.
Most of the issues are ranked as Critical, and there are seven of these. Mozilla defines a critical issue as a "Vulnerability [that] can be used to run attacker code and install software, requiring no user interaction beyond normal browsing".
The other threats are High, which represent problems that can affect anyone browsing the internet, and Moderate, which are described as being one human interaction away from Critical. Four high vulnerabilities and six moderate issues are fixed in Firefox 24.
Several patches are credited to a security researcher named Nils. "Security researcher Nils reported two potentially exploitable memory corruption bugs involving scrolling. The first was a use-after-free condition due to scrolling an image document," said the firm in its security advisory. "The second was due to nodes in a range request being added as children of two different parents."
Other third parties are also named in the security advisory credits, as are internal Mozilla teams.
Mozilla has also rolled support for the HTML5 API known as WebRTC into the mobile version of the web browser, providing the video chat features that the desktop version has had since June.
"We are excited to announce that WebRTC, a new HTML5 API that enables real-time communication, such as video calling in the browser, has come to your favorite mobile browser - Firefox for Android!" Mozilla senior engineering manager for WebRTC Maire Reavy explained in a blog post.
"Now developers can start to create real-time web experiences on the mobile platform that work on both desktop and mobile."
The addition of WebRTC adds browser to browser peer connections and hooks into the user's webcam and microphone. µ
We've come a long way from talking clocks
Plus there's a slight jump for Windows 7
Larry's jolly jape at HPE's expense proves costly
First incident of a driverless car-related death