toggle

AAPL Stock: 129.09 ( + 0.63 )

Printed from http://www.macnn.com

Firefox update supports Leopard, fixes security

updated 03:50 pm EDT, Fri October 19, 2007

Firefox 2.0.0.8 released

The Mozilla Foundation today released Firefox 2.0.0.8, an update to the open-source browser. The update brings compatibility with Mac OS X 10.5 Leopard -- although a few issues still exist -- and several security fixes, including two labeled as critical flaws. Released just ahead of next week's release of Leopard, the Firefox update has problems with some media plugins as well as Add-ons that contain binary components. The release notes document problems with rendering, issues when closing other tabs (when 20 or more are open), and when viewing Macromedia Flash content on Intel-based Macs. "To work around this problem, users can remove or move the PowerPC version of 'Flash Player Enabler.plugin' from /Library/Internet Plug-Ins folder," the notes added.

The developers also note that the there is no "Talkback" feature on Intel-based Macs when running natively or under Rosetta. "Talkback" typically sends information about a crash or bug to the developers so it can be fixed. Instead, the Apple Crash report program should launch in the event of application crashes, the notes said.

The browser update also fixes a critical security flaw that would allow malicious sites to locally execute JavaScript code in a webpage with the same privileges as the user. "Mozilla security researcher moz_bug_r_a4 reported that it was possible to use the Script object to modify XPCNativeWrappers in such a way that subsequent access by the browser chrome--such as by right-clicking to open a context menu--can cause attacker-supplied javascript to run with the same privileges as the user," the developers noted.

In addition critical memory corruption errors were fixed, helping the overall stability of the product. While no specific flaw was known for the memory corruption bugs, the developers "presumed that with enough effort at least some of these could be exploited to run arbitrary code."

Overall, eight specific security fixes were identified as resolved in the latest update.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

  1. UberFu

    Joined: Dec 1969

    0

    issues exist...

    on the Tiger version too_

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Advertisement

Recent Reviews

Moshi iVisor AG and XT for iPad Air 2

Have you ever tried to put in a screen protector that relies on static to cling to the screen? How many bubbles and wrinkles does it h ...

OmniPlan (OS X, iOS)

We reviewed the Omni Group's most famous Mac software, a To Do app called OmniFocus, back in June 2014, and we were impressed. Some o ...

Epson PowerLite Home Cinema 3500 projector

Trying to find the perfect projector for a home theater can be tricky, as there are bountiful options on the market from a large numbe ...

toggle

Most Commented