Language Selection

English French German Italian Portuguese Spanish

Firefox's flaws fixed in upgrade

Filed under
Software

The Mozilla Foundation, maker of the open source web browser Firefox, has released a security patch to plug two critical security flaws in the browser.

The flaws were found last week by net security experts. Danish firm, Secunia, called them "extremely critical".

Mozilla has now recommended people upgrade to the latest version, Firefox 1.0.4, which is a security update.

Firefox is Microsoft Internet Explorer's (IE) main rival. IE has dominated the browser market.

But many have switched to Firefox because, so far, it has had fewer security flaws than IE and is more customizable.

Although the vulnerabilities, reported on Saturday, had been identified no cases had been reported of them being exploited.

Secunia said they were "extremely critical" because they could have let cookie and history information be used to get access to personal information or access previously visited sites.

The first flaw reported fooled the browser into thinking software was being installed by a legitimate, or safe, website.

The second happened was related to the software installation trigger which was not able to properly check icon web addresses which contain JavaScript code.

Potentially, a hacker could have taken advantage of the security flaws to secretly launch malicious code or programs.

Full Story.

More in Tux Machines

GNOME and GTK News: GNOME Release and More

These are the most exciting Linux powered devices

What started off as a hobby project for the Finnish engineer Linus Torvalds, has turned into a global phenomenon. Today Linux is literally powering the modern economy – everything from Amazon public clouds, stock exchanges, and social networks run on Linux. It also runs in devices like sensors, printers, routers…and what not. Linux virtually owns the smartphone market with Android. Read more

FreeBSD News: 64-bit Inodes and KDE

  • FreeBSD Lands Support For 64-bit Inodes (ino64 Project)
    While Linux and other operating systems (including DragonFlyBSD) have supported 64-bit inodes for data structures on file-systems, FreeBSD has been limited to 32-bit. But thanks to the work of many on the ino64 project, FreeBSD now has support for 64-bit inodes while retaining backwards compatibility.
  • KDE FreeBSD CI (2)
    The KDE Continuous Integration system builds KDE software from scratch, straight from the git repositories, and usually from master (or whatever is considered the development branch). It’s been building for Linux for a long time, and has recently been expanded with FreeBSD servers as well. KDE sysadmin has been kind enough to provide two more VMs (with some more compiling “oomph”) so that we can keep up better, and the CI has just been expanded with all of the Plasma products. That means we’re now building KDE Frameworks, and the Plasma desktop.

Enlightenment 0.21.8

  • Enlightenment DR 0.21.8 Release
    This is another bugfix and stability release for the Enlightenment 21 Release series.
  • Enlightenment 0.21.8 Released
    Enlightenment 0.21.8 was released this week as the latest stable point release to the E21 series. Enlightenment 0.21.8 has a number of fixes, including some display fixes, avoid starting XWayland repeatedly, X11 and Wayland specific alterations, and other routine work.