Pages

Friday, 17 February 2012

Firefox and Thunderbird 10.0.2 fixes bugs and critical vulnerabilities



Security fixes for Firefox and Thunderbird include:

Critical: Vulnerability can be used to run attacker code and install software, requiring no user interaction beyond normal browsing. 
High: Vulnerability can be used to gather sensitive data from sites in other windows or inject data or code into those sites, requiring no more than normal browsing actions. 
Moderate: Vulnerabilities that would otherwise be High or Critical except they only work in uncommon non-default configurations or require the user to perform complicated and/or unlikely steps. 
Low: Minor security vulnerabilities such as Denial of Service attacks, minor data leaks, or spoofs. (Undetectable spoofs of SSL indicia would have "High" impact because those are generally used to steal sensitive data intended for other sites.) 

Bug fixes and new features for Firefox include: 

Java applets sometimes caused text input to become unresponsive (bug 718939) 
Most add-ons are now compatible with new versions of Firefox by default 
The forward button is now hidden until you navigate back 
Anti-Aliasing for WebGL is now implemented (see bug 615976) 
CSS3 3D-Transforms are now supported (see bug 505115)HTML5 
New  element for bi-directional text isolation, along with supporting CSS properties (see bugs 613149 and 662288)HTML5  
Full Screen APIs allow you to build a web application that runs full screen (see the feature page)DEVELOPER 
We've added IndexedDB APIs to more closely match the specification 
Inspect tool with content highlighting, includes new CSS Style Inspector 
Mac OS X only - after installing the latest Java release from Apple, Firefox may crash when closing a tab with a Java applet installed (700835) 
Some users may experience a crash when moving bookmarks (681795) 
Silverlight video may not play on some Macintosh hardware (715396)

No comments:

Post a Comment

Disqus

Please Comment Here