10 critical security bugs patched in Mozilla Firefox browser

Mozilla patched 10 bugs in Firefox, half of them critical, in the browser's rendering and JavaScript engines, media and video libraries, and other components. Firefox 3.5.6, the browser's first security update since late Oct, fixed five flaws rated critical by Mozilla, one tagged as high, three pegged as moderate, and one labeled as a low […]

Mozilla patched 10 bugs in Firefox, half of them critical, in the browser's rendering and JavaScript engines, media and video libraries, and other components. Firefox 3.5.6, the browser's first security update since late Oct, fixed five flaws rated critical by Mozilla, one tagged as high, three pegged as moderate, and one labeled as a low threat. Five critical vulnerabilities were located in rendering and JavaScript engines, and in "liboggplay" and "libtheora" media and video libraries. Three of four vulnerabilities outlined in MFSA-2009-065 generate browser crashes, while last affects TraceMonkey JavaScript engine that debuted in Firefox 3.5. Mozilla recommended users disable JavaScript in Firefox if they were unable to immediately patch the browser. Firefox 3.5.6 and 3.0.16 available for Windows, Mac OS X and Linux. Current Firefox users can instead call up the browsers' update tools, or wait for automatic update notifications to appear in the next 48 hours.