New Vulnerabilities Discovered in Firefox 1.0

jflint writes "Today, the security firm Secunia has released 8 more security vulnerabilities it has discovered in Mozilla products, including Firefox and Thunderbird. The exploits "could be used by criminals to spoof, or fake, various aspects of a Web site, ranging from its SSL secure site icon to the contents of an inactive tab.""

And there's already a fix?

[b00m3rang]

I'll take it.

Why Not Just Tell People to Update

[r3v0ltn]

Considering how many people don't RTFA, the post would be more useful if it mentioned the Firefox update.

So, how about Mozilla?

[RealAlaskan]

Do these also affect Mozilla 1.7.5? How about 1.8.x?

God forbid that I should RTFA; after all, this is slashdot.

Where's the update?

[teslatug]

What's the use of having an update feature if you never enable it or get it in a working state? I have never been able to update firefox through the built-in feature.

Update download not seeing 1.01 ?

[tcc]

Something I didn't like yesterday with my 1.0 I did "check for updates" within firefox, everything was up to date eventhough 1.01 was out for a while... I went on manually downloading the 1.01 update and install it.

Am I the only one who got this?

Re:Emergency!

[spitefulcrow]

Uh... I think I just want some positive karma.

Mozilla still has a ways to go

[klui]

Well, Asa said that automatic updates would be rolled out in phases this week, but although en-US is enabled, my Windows 1.0 doesn't see any updates. I guess the updater needs a bit more work...

Re:New Discovery?

[sd.fhasldff]

This isn't new stuff! It's all fixed in 1.0.1. What, exactly, are you thanking Secunia for?