Firefox 3.5.4

Posted on October 29, 2009 by

Firefox v.3.5.4 was released October 27th, 2009 fixing several issues;
* Several security issues.
* Fixed several stability issues.
* Added the ability to re-submit crash reports (bug 378528)
* After using Clear Recent History some SSL sites would not load all images and styles without pressing reload (see bug 480619)

Fixed in Firefox 3.5.4 [3]
MFSA 2009-64 Crashes with evidence of memory corruption (rv:1.9.1.4/ 1.9.0.15)
MFSA 2009-63 Upgrade media libraries to fix memory safety bugs
MFSA 2009-62 Download filename spoofing with RTL override
MFSA 2009-61 Cross-origin data theft through document.getSelection()
MFSA 2009-59 Heap buffer overflow in string to number conversion
MFSA 2009-57 Chrome privilege escalation in XPCVariant::VariantDataToJS()
MFSA 2009-56 Heap buffer overflow in GIF color map parser
MFSA 2009-55 Crash in proxy auto-configuration regexp parsing
MFSA 2009-54 Crash with recursive web-worker calls
MFSA 2009-53 Local downloaded file tampering
MFSA 2009-52 Form history vulnerable to stealing

Vulnerability ratings: 6 Critical, 3 moderate, 2 Low
Affects: Windows, Linux, and Mac OS X
Evaluation: Update now

LINKS:
[1] Firefox Updated: Firefox 3.5.4 (2009-Oct-27) [Mozilla]
[2] Mozilla Firefox 3.5.4 Release Notes (2009-Oct-27) [Mozilla]
[3] Security Advisories for Firefox 3.5 [Mozilla]
[4] Bug List [Bugzilla@Mozilla – Bug List]

CRP09-60

About these ads
This entry was posted in firefox, patch, security. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s