Firefox 37.0.1 released

Firefox 37.0.1 for desktop had been released and available for download and install. This latest release comes with additional issues been fixed, one of which is Certificate verification bypass through the HTTP/2 Alt-Svc header and Loading privileged content through Reader mode.

firefox33-fl

Other various bug fixes includes

  • Windows can retain access to privileged content on navigation to unprivileged pages
  • PRNG weakness allows for DNS poisoning on Android
  • Same-origin bypass through anchor navigation
  • Use-after-free due to type confusion flaws
  • Memory corruption crashes in Off Main Thread Compositing
  • CORS requests should not follow 30x redirections after preflight
  • Incorrect memory management for simple-type arrays in WebRTC
  • Cursor clickjacking with flash and images
  • Out of bounds read in QCMS library
  • resource:// documents can load privileged pages
  • Add-on lightweight theme installation approval bypassed through MITM attack
  • Use-after-free when using the Fluendo MP3 GStreamer plugin
  • Miscellaneous memory safety hazards (rv:37.0 / rv:31.6)

Install Mozilla Firefox 37.0.1 on Ubuntu OS

sudo add-apt-repository ppa:ubuntu-mozilla-security/ppa

sudo apt-get update

sudo apt-get install firefox

Remove Firefox

sudo apt-get remove firefox
 
comments powered by Disqus