Slashdot Mirror

← Back to Stories (view on slashdot.org)

Mozilla Firefox 1.5.0.4 Released

Posted by ryuzaki0 on from the pointy-point-releases dept.

KrayzieKyd writes "God Bless Mozilla. Firefox has just notified me that Firefox version 1.5.0.4 has just been released with release notes and according to Mozilla's website, the same has been released for Thunderbird with its own release notes."

6 of 375 comments (clear)

  1. Freshmeat? by mtenhagen · · Score: 5, Insightful

    Are we getting slashdot articles for each verion bump of the mozilla products? I tought freshmeat was created for that.

    Is there something special about this release? According to the release notes these bugs where removed. Great but not enough for a slashdot article.

    MFSA 2006-43 Privilege escalation using addSelectionListener
    MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
    MFSA 2006-41 File stealing by changing input type (variant)
    MFSA 2006-39 "View Image" local resource linking (Windows)
    MFSA 2006-38 Buffer overflow in crypto.signText()
    MFSA 2006-37 Remote compromise via content-defined setter on object prototypes
    MFSA 2006-36 PLUGINSPAGE privileged JavaScript execution 2
    MFSA 2006-35 Privilege escalation through XUL persist
    MFSA 2006-34 XSS viewing javascript: frames or images from context menu
    MFSA 2006-33 HTTP response smuggling
    MFSA 2006-32 Fixes for crashes with potential memory corruption
    MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)

    --
    200GB/2TB $7.95 Coupon: SAVE90DOLLAR
    1. Re:Freshmeat? by KiloByte · · Score: 5, Insightful

      The thing is, you don't ever hear about MSIE security issues unless there is already a popular exploit in the wild.

      --
      The creatures outside looked from Alt-Right to Antifa; but already it was impossible to say which was which.
    2. Re:Freshmeat? by Anonymous Coward · · Score: 5, Insightful
      Well the FAQ of the release notes does say:
      What can I do to help?

      We need all the exposure we can get ... Submit a story to Slashdot and other news sites about the release.
      Someone was bound to follow the instructions.
    3. Re:Freshmeat? by MobileTatsu-NJG · · Score: 4, Insightful

      "Submit a story to Slashdot and other news sites about the release. Someone was bound to follow the instructions."

      Ah, so this is a Slashvertisment.

      --

      "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)

    4. Re:Freshmeat? by mrchaotica · · Score: 4, Insightful

      Leave it open for a few days. The reason that it's called a "leak" is that the free memory slowly decreases over time.

      --

      "[Regarding the 'cloud,'] ownership was what made America different than Russia." -- Woz

  2. Re:Opensource is FUD by Rogue+Pat · · Score: 4, Insightful

    Looking at the source code, you can see which code got changed and which changes were made. The bug is not for your eyes, as it may give detailed steps to exploit the vulnerability.

    Remember when Microsoft releases a patch it would say "a maliciously crafted web page may" etc. The bugzilla entry for Firefox may actually GIVE you all you need to build that maliciously crafted page.

    As said before, there's no need to publicize detailed steps to exploit a browser.