Mozilla released new build of Firefox v3 with security fixes. Issued 9 Security Advisories

The release notes for the new build of Firefox v3.0.11 includes security fixes in addition to stability and other fixes:

What’s New in Firefox 3.0.11

Firefox 3.0.11 fixes several issues found in Firefox 3.0.10:

Fixed several security issues.
Fixed several stability issues.
Several issues were reported with the internal database, SQLite, which have now been fixed by upgrading to a newer version.
Fixed an issue where, in some specific cases, the bookmarks database would become corrupt. (bug 464486)

http://www.mozilla.com/en-US/firefox/3.0.11/releasenotes/

6-12-2009 4-15-06 AM

You can download it now from their website or FTP server if you want to take advantage of the fixes (especially the security fixes) or use the updater.

6-12-2009 5-40-18 AM

Mozilla Security Advisories:

  • MFSA 2009-32 JavaScript chrome privilege escalation
  • MFSA 2009-31 XUL scripts bypass content-policy checks
  • MFSA 2009-30 Incorrect principal set for file: resources loaded via location bar
  • MFSA 2009-29 Arbitrary code execution using event listeners attached to an element whose owner document is null
  • MFSA 2009-28 Race condition while accessing the private data of a NPObject JS wrapper class object
  • MFSA 2009-27 SSL tampering via non-200 responses to proxy CONNECT requests
  • MFSA 2009-26 Arbitrary domain cookie access by local file: resources
  • MFSA 2009-25 URL spoofing with invalid unicode characters
  • MFSA 2009-24 Crashes with evidence of memory corruption (rv:1.9.0.11)
Published Thu, Jun 11 2009 22:32 by donna