Firefox 3.6.2 has been released and includes:
- “Fixed a critical security issue that could potentially allow remote code execution…
- Fixed several additional security issues.
- Fixed several stability issues.”
The release fixes a problem with the WOFF downloadable font format that was introduced in Gecko 1.9.2 (which was first included with Firefox 3.6), discovered by Evgeny Legerov of Intevydis. The bug could be exploited by an attacker to remotely crash Firefox and execute arbitrary code on a victim’s computer. The problem does not affect earlier versions of Firefox.
A complete list of changes can be found on Mozilla’s Bugzilla.
0 Responses
Stay in touch with the conversation, subscribe to the RSS feed for comments on this post.