FireFox 2.0.0.15

Mozilla released Firefox 2.0.0.15. on July 1, 2008

Fixed in Firefox 2.0.0.15 [1]
MFSA 2008-33 Crash and remote code execution in block reflow
MFSA 2008-32 Remote site run as local file via Windows URL shortcut
MFSA 2008-31 Peer-trusted certs can use alt names to spoof
MFSA 2008-30 File location URL in directory listings not escaped properly
MFSA 2008-29 Faulty .properties file results in uninitialized memory being used
MFSA 2008-28 Arbitrary socket connections with Java LiveConnect on Mac OS X
MFSA 2008-27 Arbitrary file upload via originalTarget and DOM Range
MFSA 2008-25 Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript()
MFSA 2008-24 Chrome script loading from fastload file
MFSA 2008-23 Signed JAR tampering
MFSA 2008-22 XSS through JavaScript same-origin violation
MFSA 2008-21 Crashes with evidence of memory corruption (rv:1.8.1.15)

Vulnerability ratings: 4 Critical, 4 High, 2 Moderate
Evaluation: Update now

We strongly recommend that all Firefox users upgrade to this latest release. If you already have Firefox 2.x, you will receive an automated update notification within 24 to 48 hours. This update can also be applied manually by selecting “Check for Updates…” from the Help menu.
…
Note: Firefox 2.0.0.x will be maintained with security and stability updates until mid-December, 2008. All users are encouraged to upgrade to Firefox 3. [3]

[1] Fixed in Firefox 2.0.0.15 [Mozilla]
[2] Mozilla Firefox 2.0.0.15 Release Notes [Mozilla]
[3] Firefox 2.0.0.15 security and stability update now available for download (2008-Jul-01) [Mozilla]
[4] AA-2008.0147 — [Win][UNIX/Linux] — Firefox 2.0.0.15 and SeaMonkey 1.1.10 have been released correcting 12 and 13 security vulnerabilities respectively. (2008-Jun-03) [AUSCERT]
[5] Firefox 2.0.0.15 is out (2008-Jul-02) [SANS]