Four critical patches for Firefox 2
The Mozilla team has fixed a total of twelve security problems in its new version 220.127.116.11 of Firefox. Four are classed as critical, i.e. could allow the injection of external code. Details of each vulnerability can be found on the Mozilla Security Advisory web page, via the link below.
The Mozilla team is recommending all users to switch to Firefox version 3, but will continue to release security and stability updates for the still widely-used predecessor version until mid-December 2008. Heise's browser statistics for the first two days of July show that although Firefox 2 still has a 25 per cent share, it has already been overtaken by Firefox 3 with a 32 per cent share.
There is still no update for the security problem reported directly after Firefox 3's release.
The latest version 2 releases are available to download for Windows, Mac and Linux. The new version should start to be distributed via the automatic update mechanism within the next few days, or the automatic update can be triggered immediately using "Check for updates..."
- Fixed in Firefox 18.104.22.168, Known Vulnerabilities in Mozilla Products