Computer Internet network security News

Mozilla has recently released an update which fixes several security issues for Firefox. The security release fixes the issues relate to XML data theft via RDFXMLDataSource and cross-domain redirect and Crashes. In the new version the above fix is included.

Moreover a bug that caused items in the File menu to be ineffective after using Print has been fixed. The bug that makes cookies to appear to be missing after sometime has also been fixed.

Users of the Flashblock add-on that experienced an issue where sound from the Flash plug-in would continue to play for a short time after closing a tab or window will be happy to hear that problem has been fixed as well.

Mozilla also claimed that the stability and accessibility iisues were also taken into account in the new version of Firefox 3.07.

Browsers security firefox security, mozilla, xml-security

Just a day after it released Firefox 3.0.2 to fix 11 vulnerabilities, Mozilla Corp. said that an overlooked password bug requires a fast-track update it hopes to launch next week.

Late Wednesday, Mike Beltzner, Mozilla’s director of Firefox, said that the bug, which prevents some users from accessing their browser-saved passwords, means another update is necessary. “While this doesn’t affect all Firefox users, it is a significant regression and has triggered a fast-release Firefox 3.0.3 which will contain a single fix,” Beltzner said in a message to the mozilla.dev.planning group.

The bug popped up in Firefox 3.0.2, which Mozilla released Tuesday, after developers added a fix to make the browser’s password manager work on international domain name (IDN) sites. IDN sites are those that have non-ASCII characters in their URLs, such as addresses with Arabic, Hebrew or Chinese characters, or ones with non-English diacritical marks.

According to Beltzner, users who have saved passwords on IDN sites or some non-English domains will be unable to access those passwords or save any new passwords after updating to Firefox 3.0.2.

“There is no permanent data loss, the saved data is just inaccessible,” Beltzner noted.

Regression bugs aren’t unknown to Mozilla or Firefox. Last November, the company rushed a release out the door to fix five bugs it had introduced in the previous version of the browser, which had been posted for download about a week before.

A fix for the password regression bug has been crafted and is being tested, Beltzner added.

Browsers security firfox, mozilla, password