Slashdot Mirror
Critical Mozilla, Thunderbird Vulnerabilities
d3ik writes "An advisory has been issued on several buffer overflow exploits in the Mozilla and Thunderbird code. Coincidentally, one of the exploits takes advantage of a unchecked buffer in the bitmap parser, very similar to recent Microsoft JPEG vulnerability.
The good news is that if you have an updated version (Mozilla 1.7.3, Firefox 1.0PR, Thunderbird 0.8) you won't be affected."
wouldn't it just be the anti- microsoft-bashing? or is it the bashing of those who are anti-microsoft? (these seem related).
If other reasons we do lack, we swear no one will die when we attack
OSS has many bugs and security problems. But if I paid over $100 for my Linux based OS I would expect better quality and security than I get from XP. Ironicly I have less problems with viruses and popups on my free OS, which also includes more revelant software in its standard install. Not to mention I can modify, distribute and sell it. Perhaps Microsoft deserves some of this criticism. No one mentions Apple's software, do they.
I think of this as constructive criticism. But I know you and Microsoft would rather we just forgot about its flaws and moved on to show how wonderful the software is when it is working in a stable and secure manner. Maybe their next OS will have us agree in the EULA not to be so critical.
Installed, got this error: "Java Plug-in for Netscape Navigator should not be used in Microsoft Internet Explorer. Please use Java Plug-in for Microsoft Internet Explorer instead." And it wouldn't run. So I copied by profile folder, grabbed 0.9.3 again, copied over my profiles, and it's back to normal.