Language Selection

English French German Italian Portuguese Spanish

Firefox's flaws fixed in upgrade

Filed under
Software

The Mozilla Foundation, maker of the open source web browser Firefox, has released a security patch to plug two critical security flaws in the browser.

The flaws were found last week by net security experts. Danish firm, Secunia, called them "extremely critical".

Mozilla has now recommended people upgrade to the latest version, Firefox 1.0.4, which is a security update.

Firefox is Microsoft Internet Explorer's (IE) main rival. IE has dominated the browser market.

But many have switched to Firefox because, so far, it has had fewer security flaws than IE and is more customizable.

Although the vulnerabilities, reported on Saturday, had been identified no cases had been reported of them being exploited.

Secunia said they were "extremely critical" because they could have let cookie and history information be used to get access to personal information or access previously visited sites.

The first flaw reported fooled the browser into thinking software was being installed by a legitimate, or safe, website.

The second happened was related to the software installation trigger which was not able to properly check icon web addresses which contain JavaScript code.

Potentially, a hacker could have taken advantage of the security flaws to secretly launch malicious code or programs.

Full Story.

More in Tux Machines

Fedora 22 for IBM z Systems is here!

We are proud to announce the official release of Fedora 22 for IBM z Systems, the community-driven and community-built operating system now available in Server edition. Read more Also: Fedora 22 for POWER is here!

Ubuntu Snappy Core to Power Intel's IoT Gateway

On June 2, Canonical had the great pleasure of announcing that they will join forces with Intel, one of the world's biggest hardware manufacturer, to collaborate around Intel's IoT (Internet of Things) gateways and Canonical's Snappy Ubuntu Core operating system for IoT devices. Read more

Why Intel Invests in Open Source [VIDEO]

Few if any companies in the world today are as deeply involved in open source work as tech giant Intel. Helping to lead Intel's open source efforts is Imad Sousou, VP in Intel's Software and Services Group and GM of the Intel Open Source Technology Center Read more

AMD Catalyst 15.5 Linux Video Driver Supports SUSE Linux Enterprise Desktop 12

AMD finally updated their graphics driver for Linux platforms to version 15.5, a release that introduces support for the SUSE Linux Enterprise Desktop (SLED) 12 operating system. Read more