Friday, March 27, 2009

Firefox 3.0.8 Critical Security Update

Mozilla has updated Firefox to 3.0.8 version to address two security issues. As of this posting, the Firefox 3.0.8 Release Notes have yet to be updated to identify the issues. However, Bug 485217, that I quickly reported on Wednesday as a "Zero Day" security flaw has been identified as resolved.

Resolved/Fixed: Bug 485217 – Exploitable crash in xMozillaXSLTProcessor::TransformToDoc

Update: Via Ryan Naraine, the second bug fixed in the security update was the drive-by download issue used to win the CanSecWest competition

Use the "Help -> Check for Updates" option to update your browser.





Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

No comments: