Mozilla Firefox - New 184.108.40.206 release addresses several security issues
All users should update to the latest version of Mozilla Firefox, as several recently discovered security issues have been addressed by this latest release.
Summary of Security Issues Fixed
Description: Multiple vulnerabilities have been reported in Firefox, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, potentially disclose sensitive information, and potentially compromise a user's system.
2) An error in the dynamic style handling can be exploited to reference freed memory by changing the style of an element from "position:relative" to "position:static".
3) An error in the "QueryInterface" method of the Location and Navigator objects can be exploited to cause a memory corruption.
5) Some integer overflows in the E4X, SVG, and Canvas functionalities may be exploited to execute arbitrary code.
6) A boundary error in the "nsExpatDriver::ParseBuffer()" function in the XML parser may be exploited to disclose data on the heap.
7) The internal "AnyName" object of the E4X functionality is not properly protected. This can be exploited to create a communication channel between two windows or frames having different domains.
Update to version 220.127.116.11.
Additional CVE References