Today (March 6th), the new version of Firefox, version 3.0.7 was released to the world.
This release has a number of bug fixes and updates in it, but the really important reason to download this release and update your existing installation of Firefox is that it contains 5 security fixes, three of which are classified as Critical and one as High. They are as follows:
MFSA 2009-11 URL spoofing with invisible control characters (LOW)
MFSA 2009-10 Upgrade PNG library to fix memory safety hazards (CRITICAL)
MFSA 2009-09 XML data theft via RDFXMLDataSource and cross-domain redirect (HIGH)
MFSA 2009-08 Mozilla Firefox XUL Linked Clones Double Free Vulnerability (CRITICAL)
MFSA 2009-07 Crashes with evidence of memory corruption (rv:1.9.0.7) (CRITICAL)
Mozilla define Critical as “Vulnerability can be used to run attacker code and install software, requiring no user interaction beyond normal browsing.”
So for all of you Firefox user’s out there, download and update your Firefox installation now to ensure you are protected from these vulnerabilities.
