Update to Firefox 3.5.4 – lots of Security fixes
If you're new here, you may want to subscribe to Windows Reference RSS feed Thanks for visiting!
If you had Auto update enabled (which is enable by default anyway) then the next time you start Firefox it should download and install the newest version of Firefox for you.
To find if Auto update is enabled,
1. Open Firefox, click Tools – Options – Advanced
2. Click Update tab and see if
“Firefox” is ticked under Automatically check for updates and
“Automatically download and install the update” under When updates are found for Firefox.
Also, you may click Help – Check for Updates menu item as well to download and install Firefox 3.5.4 or download directly from here
The following are the list of Security issues order from Crtical to Low priority:
Critical Security Issues fixed:
Crashes with evidence of memory corruption (rv:1.9.1.4/ 1.9.0.15)
Upgrade media libraries to fix memory safety bugs
Heap buffer overflow in string to number conversion
Chrome privilege escalation in XPCVariant::VariantDataToJS()
Heap buffer overflow in GIF color map parser
Crash with recursive web-worker calls
Moderate Security Issues fixed:
Cross-origin data theft through document.getSelection()
Crash in proxy auto-configuration regexp parsing
Form history vulnerable to stealing
Low Security Issues fixed:
Download filename spoofing with RTL override
Local downloaded file tampering
Did you enjoy this post? Why not leave a comment below and continue the conversation, or subscribe to my feed and get articles like this delivered automatically each day to your feed reader.
No comments yet.
Leave a comment
Line and paragraph breaks automatic, e-mail address never displayed, HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>