[Web4lib] Firefox 3.0.1 security update!
Bill Drew
dreww at tc3.edu
Thu Jul 17 10:29:23 EDT 2008
>From The PC Doctor's blog » Blog Archive » » Firefox 3.0.1 released
Yesterday it was the turn of Firefox 2.0 to get an update, today it's
the turn of Firefox 3.0
Firefox 3.0.1 plugs up the following vulnerabilities:
- MFSA 2008-36 Crash with malformed GIF file on Mac OS X. Where a
specially crafted GIF file caused the browser to free an uninitialized
pointer. This can crash the browser and allow arbitrary code execution
on the victim's computer.
- MFSA 2008-35 Command-line URLs launch multiple tabs when Firefox not
running. Now this one had an easy workaround*. Just always run Firefox!
- MFSA 2008-34 Remote code execution by overflowing CSS reference
counter. This vulnerability affects the CSSValue array data structure.
-----------------------------------------
Wilfred (Bill) Drew, M.S., B.S., A.S.
Assistant Professor
Librarian, Systems and Tech Services
Tompkins Cortland Community College (TC3) Library: http://www.tc3.edu/library/
Dryden, N.Y. 13053-0139
E-mail: dreww at tc3.edu
Phone: 607-844-8222 ext.4406
AOL Instant Messenger:BillDrew4
Online Identity: http://claimID.com/billdrew
StrengthsQuest: Ideation, Input, Learner, Activator, Communication
http://www.facebook.com/people/Bill_Drew/
More information about the Web4lib
mailing list