Mozilla sent Firefox Version 119.0 to the release channel. The update includes eleven security updates of which three (3) are rated high, seven (7) moderate, and one (1) rated low.
Firefox ESR was updated to Version 115.4.
Note: Effective November 1, 2023, Mozilla will be renaming Firefox Accounts to Mozilla Accounts. From Firefox accounts renamed Mozilla accounts - What you need to know:
Why the renaming?
Over the years, Firefox accounts expanded its role beyond being solely an authentication solution for Firefox Sync. It now serves as Mozilla's main authentication and account management service for a wide range of products and services, supporting millions of active account customers globally. As such, the original "Firefox" branding no longer accurately reflects the broad scope of Mozilla's offerings. The renaming is intended to create a more consistent brand experience across all Mozilla surfaces, driving higher awareness of the portfolio of Mozilla products.
A new account isn't needed and sign-in remains the same. Additional information is available in the referenced support document.
High
##CVE-2023-5721: Queued up rendering could have allowed websites to clickjack
#CVE-2023-5730: Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4
#CVE-2023-5731: Memory safety bugs fixed in Firefox 119
Moderate
#CVE-2023-5722: Cross-Origin size and header leakage
#CVE-2023-5723: Invalid cookie characters could have led to unexpected errors
#CVE-2023-5724: Large WebGL draw could have led to a crash
#CVE-2023-5725: WebExtensions could open arbitrary URLs
#CVE-2023-5726: Full screen notification obscured by file open dialog on macOS
Low
#CVE-2023-5722: Cross-Origin size and header leakage
New
Fixed
- Fixed an issue causing unexpected jumps in scroll position on Facebook.
Update: To get the update now, select "Help" from the Firefox menu, then pick "About Firefox." Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.
References
No comments:
Post a Comment
Neither spam nor comments containing vulgarities will be approved.