Firefox 3.0.13 fixes SSL flaws divulged at Black Hat; 3.5.2 darns known SOCKS5 hole
Mozilla today patched Firefox 3.5 and Firefox 3.0 to quash three security vulnerabilities, including a pair unveiled last week at Black Hat, and a third Mozilla itself revealed last month.
Firefox 3.0.13, the update to the older browser that Mozilla will drop off the support list in January 2010, includes two bugs, while Firefox 3.5.2 fixes a separate flaw.
The vulnerabilities patched by Firefox 3.0.13 were disclosed last Thursday by Dan Kaminsky of IOActive and a security consultant who calls himself Moxie Marlinspike, at Black Hat in Las Vegas.
More: http://computerworld.com/s/article/9136216/
Download: http://www.mozilla.com
Release Notes: http://www.mozilla.com/en-US/firefox/3.5.2/releasenotes/
http://www.mozilla.com/en-US/firefox/3.0.13/releasenotes/
............................................................................................
Mozilla today patched Firefox 3.5 and Firefox 3.0 to quash three security vulnerabilities, including a pair unveiled last week at Black Hat, and a third Mozilla itself revealed last month.
Firefox 3.0.13, the update to the older browser that Mozilla will drop off the support list in January 2010, includes two bugs, while Firefox 3.5.2 fixes a separate flaw.
The vulnerabilities patched by Firefox 3.0.13 were disclosed last Thursday by Dan Kaminsky of IOActive and a security consultant who calls himself Moxie Marlinspike, at Black Hat in Las Vegas.
More: http://computerworld.com/s/article/9136216/
Download: http://www.mozilla.com
Release Notes: http://www.mozilla.com/en-US/firefox/3.5.2/releasenotes/
http://www.mozilla.com/en-US/firefox/3.0.13/releasenotes/