Firefox security: Mozilla’s issued a patch
Firefox security was has been in the news and, though the headlines were dire, the actual issue was less frightening than the suggested workaround. That said, the folks at Mozilla thought this Firefox security issue serious enough to recommend that all users downgrade back to version 15.
The funny thing is the security issue discovered in Firefox 16, a malicious web page could allow a hacker to see URLs a user had previously visited, was also present in a slightly different form in version 15 that, according to PCWorld, could also allow arbitrary execution — go figure.
And, for all of those folks that downgraded, Mozilla has issued point-updates covering those issues and several others. Firefox 16.01, Thunderbird 16.01 and SeaMonkey 2.13.1 (release notes unavailable at press time) are now available.
The other issues covered, at least in Firefox 16.0.1, are memory corruption bugs, one of which only affects the Android version.
This security kerfuffle, although “resolved” quickly, hasn’t been handled well. Mozilla seemed to be shooting straight from the hip in suggesting that users downgrade to an apparently less secure version and then issuing an update hours later.
Glad they got it done. Wish they were more on top of their game…
What’s your take?