Despite the fact that Firefox 3.6 is available, those who haven't yet upgraded should pay attention to the just-released Firefox 3.5.8 [1], which addresses a handful of critical security vulnerabilities, all of which could lead to memory corruption and the running of arbitrary code. These issues include several JavaScript-related crashing bugs, a vulnerability that existed in the way Firefox's Web Workers handled various data types when processing posted messages, and a problem with how the HTML parser freed used memory. Detailed information [2] regarding the update's security content is available on Mozilla's Web site. (Free, 19 MB)

[1]: http://www.mozilla.com/en-US/firefox/all-older.html
[2]: http://www.mozilla.org/security/known-vulnerabilities/firefox35.html#firefox3.5.8

Permanent article URL: http://db.tidbits.com/article/11028
This is a specially formatted version of this TidBITS article that removes colors, and optionally removes images; it's designed to minimize the use of ink and paper.
Unless otherwise noted, this article is copyright © 2010 TidBITS Publishing, Inc.. TidBITS is copyright © 2008 TidBITS Publishing Inc. Reuse governed by this Creative Commons License: http://www.tidbits.com/terms/.