mfsa

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Firefox 3.0.11 fixes 67 bugs including bookmark corruption

The latest update to Firefox addresses 67 bugs and enhancements, according to Mozilla. 23 bugs were marked as "critical" or higher. (Coincidentally this was the same number addressed by the 3.0.9 update in April.) Nine potential security vulnerabilities were patched including 1 marked as "high" and 4...

Tags: Mozilla Firefox, MFSA, Web Browsers, Linux, Internet, Operating Systems, Software, Ed Burnette

Blog posts 2009-06-15

Firefox 2 dirty dozen: Critical vulnerabilities patched

Mozilla has shipped a high-priority update for Firefox 2, warning that there are at least five serious vulnerabilities that could lead to code execution attacks. With Firefox 2.0.0.15, Mozilla fixes at least 12 documented vulnerabilities -- five rated critical --  that could put users at risk...

Tags: Mozilla Firefox 3.0, Mozilla Firefox, Critical Vulnerability, XSS, Mozilla Firefox 2.0, MFSA, Web Browsers, Internet, Ryan Naraine

Blog posts 2008-07-02

Mozilla delivers patches for Firefox; Plugs flat file vulnerability

Mozilla on Friday delivered its Firefox 2.0.0.12 update including patches that fix a Web forgery flaw, browsing history and forward navigation stealing and the directory traversal via chrome, which has been the most visible vulnerability of late. According to the Firefox security advisory, Mozilla filed the following...

Tags: Mozilla Firefox, Vulnerability, Patch Management, Web Browser, Mozilla Corp., MFSA, Web Browsers, Security, Internet, Larry Dignan

Blog posts 2008-02-07

Mozilla plugs 10 more Firefox holes

Mozilla has shipped the eighth refresh of its flagship Firefox 2 browser to fix at least 10 vulnerabilities affecting Windows and Linux users. The latest Firefox 2.0.0.8 update includes another two patches rated "critical" because of the risk of code execution. The first high-priority...

Tags: Mozilla Firefox, Vulnerability, Web Browser, Mozilla Corp., MFSA, Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2007-10-19

Mozilla zaps Firefox security bugs

Mozilla has rolled out a major security update to fix a total of seven vulnerabilities in its flagship Firefox browser.The batch of patches apply to users of Firefox 1.5.0.10 and Firefox 2.0.0.2 (Windows, Mac, and Linux) and are available as a free downloat at getfirefox.com."Due to the security fixes, we...

Tags: Patch Watch, Browsers, Vulnerability research, Responsible disclosure, Spam and Phishing, Exploit code, Open source, Mozilla, Google, Firefox

Blog posts 2007-02-23

Additional Resources

Firefox hit by multiple drive-by download flaws

Thank god I am still using 3.0.xxxI still don't understand why the need to make all things software larger and more featured. Also I will never understand why people rush to use the latest larger, bloated package...Bigger is always better......that's why we're fat! =DIE still more secure than FF...

Tags: Web browsers, Operating systems, Microsoft Windows, UNIX, Linux, Microsoft Internet Explorer, Mozilla Firefox, JavaScript, NoScript, Microsoft Corp., Web browser

Discussion threads 2009-10-28

Mozilla patches 'critical' Firefox flaws

Mozilla has released two advisories to patch serious security flaws in its flagship Firefox Web browser. The vulnerabilities are rated "critical," meaning they can be exploited by malicious hackers to run harmful code and install software, requiring no user interaction beyond normal browsing.  ...

Tags: Mozilla Firefox, Flaw, Vulnerability, Patch Management, SSL, Web Browser, Mozilla Corp., Certificate, Ssl/Tls, Web Browsers, Authentication/Encryption, Network Security, Security, Internet, Networking, Ryan Naraine

Blog posts 2009-08-03

Mozilla slaps band-aid on 11 Firefox flaws

Mozilla has joined this week's patchapalooza with the release of a Firefox update to fix 11 documented security vulnerabilities. Six of the 11 issues are in advisories rated "critical" because of the risk of code execution attacks that could allow hackers to take complete control of a...

Tags: Mozilla Firefox, Attacker, Flaw, JavaScript, Web Browser, Mozilla Corp., Firefox 3.0.11, Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2009-06-12

Firefox gets emergency update to fix the last update

It looks like last week's automatic update to Firefox came with an unintended hitchhiker: a new bug that opened up a potentially critical security vulnerability. The Mozilla Foundation responded by pushing out a new update that fixes the problem: MFSA 2009-23 Crash in nsTextFrame::ClearTextRun ...

Tags: Mozilla Firefox, Bug, Topcrashes, Web Browsers, Patches, Security, Internet, Ed Burnette

Blog posts 2009-04-28

Mozilla patches a dozen Firefox vulnerabilities

Mozilla has shipped a refresh of its flagship Firefox browser to fix a dozen documented vulnerabilities that expose users to URL spoofing, cross-site scripting, code injection and code execution attacks. The most serious fix (MFSA 2009-14) covers four browser engine and JavaScript engine crashes where Mozilla's developers...

Tags: Mozilla Firefox, Attacker, Vulnerability, Patch Management, Web Browser, Mozilla Corp., Memory Corruption, Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2009-04-22

Firefox 3.0.9 fixes 67 bugs, 23 critical

The latest update to Firefox addresses 67 bugs and enhancements, according to Mozilla. 23 bugs were marked as "critical" or higher. These numbers are slightly inflated because they contain the ones already fixed in the 3.0.8 emergency update on March 27th. Nine potential security vulnerabilities were patched...

Tags: Mozilla Firefox, Bug, Mozilla Corp., Web Browsers, Security, Internet, Ed Burnette

Blog posts 2009-04-22

Firefox 3.0.8 fixes Pwn2Own bug and one that "fell through the cracks"

The latest update to Firefox has been pushed out to users via an automatic update. This one was rushed through, mainly to fix the vulnerability used to win the 2009 CanSecWest Pwn2Own contest (MFSA 2009-13: Arbitrary code execution through XUL <tree> element). In addition it contains a...

Tags: Mozilla Firefox, Vulnerability, Bug, Crack, Web Browsers, Patches, Security, Internet, Ed Burnette

Blog posts 2009-03-30

Mozilla kills Firefox Pwn2Own bug

Mozilla has won the race among browser makers to fix code execution holes exploited during this year's CanSecWest Pwn2Own hacker contest. The open-source group today shipped Firefox 3.0.8 with fixes for two separate vulnerabilities, including a drive-by download issue used by a hacker named "Nils" to win...

Tags: Mozilla Firefox, Vulnerability, Mozilla Corp., Community Member, Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2009-03-27

Firefox 3.0.7 fixes 47 bugs, 17 critical

The latest update to Firefox pushed out to users last night via automatic update addresses 47 bugs and enhancements, according to Mozilla. 17 bugs were marked as "critical" or higher. Five potential security vulnerabilities were patched including these 3 that were marked as "critical": ...

Tags: Mozilla Firefox, Mozilla Corp., Web Browsers, Internet, Ed Burnette

Blog posts 2009-03-05

Mozilla plugs Firefox code execution holes

Mozilla plugs Firefox code execution holesRyan, any information on when these vulnerabilitieswere discovered/revealed to [b]Mozilla[/b] and whether any attacks exploiting them are know to have occured in the wild ? Such information would be relevant for those of us who attempt to follow how quickly various organisations patch discovered flaws...

Tags: Patches, Web browsers, SECURITY, Mozilla Corp., execution hole, Mozilla Firefox

Discussion threads 2009-03-05

Mozilla plugs Firefox code execution holes

Mozilla today shipped Firefox 3.0.7 with fixes for at least eight security flaws, some rated critical. The most serious of the vulnerabilities could be exploited by attackers to run code and install software, requiring no user interaction beyond normal browsing, Mozilla warned in...

Tags: Mozilla Firefox, Vulnerability, Web Browser, Mozilla Corp., Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2009-03-04

Mozilla plugs 7 security holes in Firefox

Mozilla's flagship Firefox 3 browser has undergone another security makeover to fix at least 7 documented security vulnerabilities that expose users to malicious hacker attacks. The Firefox 3.0.6 upgrade patches at least two critical Firefox flaws that may lead to arbitrary code execution attacks and another "high...

Tags: Mozilla Firefox, Attacker, Vulnerability, JavaScript, Severity, Web Browser, Mozilla Corp., Firefox 2 Release, Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2009-02-04

Firefox 3.0.6 fixes 69 bugs, some critical

The latest update to Firefox pushed out to users last night via automatic update addresses 69 bugs and enhancements, according to Mozilla. Some of the changes were trivial, such as fixing the Russian translation of the Window menu (bug 467158), but 26 bugs were marked as "critical" or higher. ...

Tags: Mozilla Firefox, Bug, Mozilla Corp., Web Browsers, Internet, Ed Burnette

Blog posts 2009-02-04

Firefox joins security patch day treadmill

Mozilla is joining Microsoft and Opera on the browser patching treadmill. The open-source group has rolled out the final security fix for the Firefox 2 branch and a new version of Firefox 3 to plug about a dozen security holes that could lead to remote code execution...

Tags: Mozilla Firefox, Mozilla Firefox 2.0, Web Browser, Bulletin, Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2008-12-16

Firefox security makeover: 11 vulnerabilities, 4 critical

 Mozilla has released a new version of its flagship Firefox browser to fix a total of 11 vulnerabilities that expose users to code execution, information stealing or denial-of-service attacks. Four of the 11 flaws covered with the new Firefox 3.0.4 are rated "critical" because of the risk...

Tags: Mozilla Firefox, Vulnerability, JavaScript, Web Browser, Mozilla Corp., Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2008-11-12