Several security bugs fixed in new version of Firefox web browser - SSO-AL2010-012

18 February 2010

Software and platforms affected

The following software is affected

Firefox 3.0.17 and prior
Firefox 3.5.7 and prior

for the following operating system platforms:

Windows (all versions)
Mac OS X (all versions)
Linux (all versions)

What is the problem?

Firefox versions 3.0.17 and 3.5.7, and prior versions of these, contain several bugs, which if not fixed, could result in your computer being attacked by criminals.

What we recommend you do

Mozilla Firefox is a popular web browser. There are currently three versions of Firefox maintained by Mozilla, namely 3.0.x, 3.5.x, and 3.6, however only 3.0.x, and 3.5.x are affected by these vulnerabilities. To find out which version of Mozilla Firefox you have, open Mozilla Firefox and from the main menu select 'Help' and select 'About Mozilla Firefox'. The problem can be easily fixed by downloading and installing the updates from:

http://www.mozilla.com/en-US/firefox/

Or by selecting the "Check for Updates" menu item under the "Help" menu.

Where you can find more information

The following links provide more information about the security issues which have been fixed:

For Firefox 3.0.18

http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.18

For Firefox 3.5.8

http://www.mozilla.org/security/known-vulnerabilities/firefox35.html#firefox3.5.8

Disclaimer

This Alert has been prepared by AusCERT for the Department of Broadband, Communications and the Digital Economy.

The information is intended for used by home users and small to medium sized businesses and is general information only and not intended as advice and was accurate and up to date at the time of publishing. The material and information in this Alert is not adapted to any particular person's circumstances and therefore cannot be relied upon to be of assistance in any particular case. In any important matter, you should seek professional advice relevant to your own circumstances.

The Commonwealth, AusCERT, and all other persons associated with this Alert accept no responsibility or liability for information either included or referred to in the Alert. No responsibility or liability is accepted for any damage, loss or expense incurred as a result of the information contained in the Alert, whether by way of negligence or otherwise.

The listing of a person or organisation in any part of this site or Alert does not imply any form of endorsement by the Commonwealth of the products or services provided by that person or organisation. Similarly, links to other web sites have been inserted for your convenience and do not constitute endorsement of material at those sites, or any associated organisation, product or service.

Please note that material in this Alert, as the case may be, includes views or recommendations of third parties, which do not necessarily reflect the views of the Commonwealth, or indicate its commitment to particular course of action. Material on this site or in this Alert may also include information provided by third parties. The Commonwealth cannot verify the accuracy of information that has been provided by third parties.

		SEARCH
Home Advisories Alerts Newsletters Subscribe or Log In Visit Stay Smart Online	Larger text Smaller text You are here: Stay Smart Online Alert Service > Client applications > Several security bugs fixed in new version of Firefox web browser - SSO-AL2010-012 Several security bugs fixed in new version of Firefox web browser - SSO-AL2010-012 18 February 2010 Software and platforms affected The following software is affected Firefox 3.0.17 and prior Firefox 3.5.7 and prior for the following operating system platforms: Windows (all versions) Mac OS X (all versions) Linux (all versions) What is the problem? Firefox versions 3.0.17 and 3.5.7, and prior versions of these, contain several bugs, which if not fixed, could result in your computer being attacked by criminals. What we recommend you do Mozilla Firefox is a popular web browser. There are currently three versions of Firefox maintained by Mozilla, namely 3.0.x, 3.5.x, and 3.6, however only 3.0.x, and 3.5.x are affected by these vulnerabilities. To find out which version of Mozilla Firefox you have, open Mozilla Firefox and from the main menu select 'Help' and select 'About Mozilla Firefox'. The problem can be easily fixed by downloading and installing the updates from: http://www.mozilla.com/en-US/firefox/ Or by selecting the "Check for Updates" menu item under the "Help" menu. Where you can find more information The following links provide more information about the security issues which have been fixed: For Firefox 3.0.18 http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.18 For Firefox 3.5.8 http://www.mozilla.org/security/known-vulnerabilities/firefox35.html#firefox3.5.8 Disclaimer This Alert has been prepared by AusCERT for the Department of Broadband, Communications and the Digital Economy. The information is intended for used by home users and small to medium sized businesses and is general information only and not intended as advice and was accurate and up to date at the time of publishing. The material and information in this Alert is not adapted to any particular person's circumstances and therefore cannot be relied upon to be of assistance in any particular case. In any important matter, you should seek professional advice relevant to your own circumstances. The Commonwealth, AusCERT, and all other persons associated with this Alert accept no responsibility or liability for information either included or referred to in the Alert. No responsibility or liability is accepted for any damage, loss or expense incurred as a result of the information contained in the Alert, whether by way of negligence or otherwise. The listing of a person or organisation in any part of this site or Alert does not imply any form of endorsement by the Commonwealth of the products or services provided by that person or organisation. Similarly, links to other web sites have been inserted for your convenience and do not constitute endorsement of material at those sites, or any associated organisation, product or service. Please note that material in this Alert, as the case may be, includes views or recommendations of third parties, which do not necessarily reflect the views of the Commonwealth, or indicate its commitment to particular course of action. Material on this site or in this Alert may also include information provided by third parties. The Commonwealth cannot verify the accuracy of information that has been provided by third parties.
	Last Updated: 2010-02-18 Copyright \| Privacy \| Disclaimer