iDunzo.com

Mozilla released Firefox 2.0.0.8 late last night and it’s highly recommended that you upgrade your install right away because of a nice list of security fixes.

The following security issues were fixed:

• URIs with invalid %-encoding mishandled by Windows
• XPCNativeWrapper pollution using Script object
• Possible file stealing through sftp protocol
• XUL pages can hide the window titlebar
• File input focus stealing vulnerability
• Browser digest authentication request splitting
• onUnload Tailgating
• Crashes with evidence of memory corruption (rv:1.8.1.8)

Firefox 2.0.0.8 is also compatible with Mac OS X 10.5 (Leopard), although there are some known issues affecting some media plugins.

This entry was posted on Friday, October 19th, 2007 at 8:42 am and is filed under Security Patches, Software, Technology, Web. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.