Mozilla has launched the newest model of Firefox browsers with main safety updates. Allegedly, the brand new Firefox 67 brings fixes for as a lot as 24 completely different safety flaws. These embody quite a few excessive severity and demanding bugs as effectively.
Main Safety Fixes With Firefox 67
This week, Mozilla has rolled-out the newest browser model of Firefox. The Firefox 67 browser launch carries fixes for quite a few main safety flaws.
As disclosed in Mozilla’s advisory, the distributors fastened two units of vital reminiscence security bugs and quite a few high-severity flaws. The vital ones embody CVE-2019-9814 that affected Firefox browser and CVE-2019-9800 that affected each Firefox and Firefox ESR browsers. Mozilla presumed that a few of these bugs, upon exploit, might permit operating arbitrary codes.
Concerning the high-severity flaws, Mozilla fastened 11 completely different vulnerabilities in Firefox. A distinguished one features a Spectre-like vulnerability (CVE-2019-9815) focusing on MacOS. To remain protected against this flaw, the Mac customers should guarantee they improve to macOS 10.14.5. Whereas it has additionally patched 6 use-after-free flaws and different safety bugs. Amongst these, the CVE-2019-9818 (Use-after-free in crash technology server) solely affected Home windows customers, whereas CVE-2019-11693 (Buffer overflow in WebGL bufferdata) affected Linux solely. The opposite vulnerabilities might affect all customers.
Different Safety Patches
Aside from the vital and high-severity flaws, the latest Firefox model additionally carries fixes for six moderate-severity bugs and a couple of low-severity safety flaws. Among the many average ones, CVE-2019-11694 (Uninitialized reminiscence leakage) and CVE-2019-11700 (opening recognized native recordsdata through res: protocol) affected Home windows customers solely. Whereas, the low-severity bug CVE-2019-11701 (webcal: protocol default handler hundreds weak internet web page) would solely work for customers with accounts on XSS weak web sites. The opposite customers remained unaffected by the bug.
Mozilla has rolled out all of the fixes in Firefox 67 and Firefox 60.7. They’ve additionally fastened another safety vulnerabilities usually affecting Firefox ESR with the newest model. The customers of the respective browsers should guarantee to maintain their gadgets up to date to stop any mishaps.
Earlier this month, Mozilla launched Firefox 60.4 to repair a extreme battle with add-ons that occurred resulting from expiry of digital certificates, in flip, disabling the add-ons.
Take your time to touch upon this text.
