Language Selection

English French German Italian Portuguese Spanish

Firefox's flaws fixed in upgrade

Filed under
Software

The Mozilla Foundation, maker of the open source web browser Firefox, has released a security patch to plug two critical security flaws in the browser.

The flaws were found last week by net security experts. Danish firm, Secunia, called them "extremely critical".

Mozilla has now recommended people upgrade to the latest version, Firefox 1.0.4, which is a security update.

Firefox is Microsoft Internet Explorer's (IE) main rival. IE has dominated the browser market.

But many have switched to Firefox because, so far, it has had fewer security flaws than IE and is more customizable.

Although the vulnerabilities, reported on Saturday, had been identified no cases had been reported of them being exploited.

Secunia said they were "extremely critical" because they could have let cookie and history information be used to get access to personal information or access previously visited sites.

The first flaw reported fooled the browser into thinking software was being installed by a legitimate, or safe, website.

The second happened was related to the software installation trigger which was not able to properly check icon web addresses which contain JavaScript code.

Potentially, a hacker could have taken advantage of the security flaws to secretly launch malicious code or programs.

Full Story.

More in Tux Machines

Intel Sandy Bridge Gets A Surprise Boost From Linux 3.17

Besides the recent work to support OpenGL Geometry Shaders for Sandy Bridge in Mesa, users of Intel "Sandy Bridge" HD Graphics can also be thankful for the forthcoming Linux 3.17 kernel. Early testing of Linux 3.17 has revealed that for at least some Intel Sandy Bridge hardware are OpenGL performance improvements with the newer kernel code. Read more

Open Source Okavango14: The Heartbeat of the Delta

We can hear this heartbeat by listening to what the environment tells us through sensors and testing. I proposed that we build low cost sensors using open source hardware and software. In recent years there has been quite a disruption in computing ability as a result of the prevalence of smartphones. Increasingly small and powerful components and processors have created an opportunities that we would have never thought possible. One of the results of that is the single-board Raspberry Pi computer. Originally, the Raspberry Pi was created to enable students to learn hardware and software development. For the Okavango Wilderness Project, we are using them to take environmental readings and send those to us for inclusion into the Into The Okavango website. Jer will cover this more in his expedition post. We are using them to measure water temperature, pH, conductivity, total dissolved solids, salinity, and specific gravity. Read more

Kochi innovator Arvind Sanjeev makes Google Glass clone for Rs 4,500

Instead of commercializing the product and with the intention of contributing to the community, Sanjeev posted a blog explaining how his 'Smart Cap' can be built by anyone using opensource hardware such as a Rasberry Pi computer, an Arduino board and Android software. Read more

Alfresco Raises A Fresh $45M To Fuel Open-Source Enterprise Content Management

Alfresco, an open source, enterprise content management startup, is today announcing a new round of funding of $45 million — a Series D round that is more than twice as big as all of its previous rounds put together. The UK-based company competes against legacy services like Documentum (which was co-founded by one of Alfresco’s co-founders, John Newton) and Sharepoint to help large organisations manage their disparate document storage both in the cloud and on-premises, and also offer versioning control and other compliance requirements across mobile, PC and other devices. Alfresco will use the new funding to step its business up a gear, with new sales and marketing efforts, and moves into more cloud-based services that could see it competing more directly also against the likes of Dropbox, Box and Huddle. Read more