Slashdot Mirror

← Back to Stories (view on slashdot.org)

Critical Mozilla, Thunderbird Vulnerabilities

Posted by timothy on from the you-do-have-a-recent-one-right dept.

d3ik writes "An advisory has been issued on several buffer overflow exploits in the Mozilla and Thunderbird code. Coincidentally, one of the exploits takes advantage of a unchecked buffer in the bitmap parser, very similar to recent Microsoft JPEG vulnerability. The good news is that if you have an updated version (Mozilla 1.7.3, Firefox 1.0PR, Thunderbird 0.8) you won't be affected."

3 of 596 comments (clear)

  1. Re:Funny by blueskies · · Score: 0, Troll

    Yeah, because everyone knows that open source software never has bugs.

    How will they ever gain back their reputation now that they have a BUG?? Maybe there is some way they can rationize it away?

  2. Re:Reminds me... by FullMetalAlchemist · · Score: 1, Troll

    Just so you know, links is my browser of choice.

    My point is that, all these brats here on /. running thier mouths when a bug appears in software by Microsoft, then try, just like you to turn the same event in FSF/OSS software into something positive.
    Man, do you annoy me.

    For the common man, diversity is the key to security. As long as we have diversity the less humanity as a whole is vulnerable, such as the DNA.

    You people never took biology class right?
    There is two key elements to life, simplicity and diversity. The simpler the lifeform, the better for survival in the long run. The more diversity, the less vulnerable you are to specific threats.

    I can't stop laughing at how you guys always try to make security an closed vs open source thing. Man am I glad you don't work where I do.

  3. Re:So will it be Mozilla's fault... by Kombat · · Score: 0, Troll

    You: "Corporations are evil."

    Pardon me for paraphrasing. I am getting so sick of you naive, shortsighted, hippy kids blindly bashing the big, evil, faceless "corporations." Open your eyes. You are living in a capitalist society. Don't like it? A photo and a bit of paperwork, and you can be on your way to a new life in China or North Korea.

    Do companies exist to make money? Yes. Do they try to maximize their profits and return-on-investment for their shareholders? Of course.

    But what people like you don't seem to understand is that these aren't a bunch of faceless suits, they are people like you and me. If you own a 401(k) (and it sounds like you are too young to be there yet), then you are a shareholder. People like your parents, your coworkers, are the investors that these companies are answering to. If these companies didn't do everything reasonable to make a profit, then these retirees and investors (i.e., you, me, our parents) dump their stock and switch to someone with better revenue forecasts.

    Do companies use every tax loophole available to them to increase profits? Yes, of course! So do I! When I do my taxes each spring, I declare every single write-off I am legally entitled to. It's just common sense. Why wouldn't you? Would you pay extra tax just out of the kindness of your heart? Of course not! Then why would you expect a corporation to do it?

    A corporation is not a bunch of faceless, hive-minded "good-'ol-boys" in a locked-up boardroom on the 100th floor, making decisions to sacrifice babies for increased profits. It's just a bunch of harmeless MBA's doing what they do best: marketing, accounting, sales, and whatever else their business entails.

    In summary, it just bugs me when I see hypocrites like you lashing out at "corporations" when you don't even really seem to understand where your retirement investment is going to come from. Guess what - it'll be those very same corporations, and you'll be demanding profits.

    Wake up and lay off.

    --
    Like woodworking? Build your own picture frames.