Mozilla ships Firefox 6, patches 10 vulnerabilities
And it fixes flaws in still-supported Firefox 3.6
Computerworld - Mozilla today released Firefox 6, the second edition since it shifted to a rapid-ship cycle that delivers a new version of the browser every six weeks.
The company also patched 10 bugs with the upgrade, and issued an update to 2010's Firefox 3.6 that fixed seven flaws total, six of them different than the ones quashed in Firefox 6.
Today's release of Firefox 6 was the second time in a row that Mozilla met its self-imposed deadline since the debut of a faster shipping schedule in March. Mozilla has historically struggled to ship browser upgrades on time, but is now 2-for-2 after picking up the pace.
There is very little difference between Firefox 6's user interface and that of its immediate predecessor, Firefox 5, or the slightly older Firefox 4.
Under the hood, however, Mozilla has added a new permissions manager that lets advanced users tweak options on a per site basis. The new manager, which can be reached by typing "about:permissions" in the browser's address bar, can be used to modify settings for password capture, cookies, pop-ups and more.
On the security front, Mozilla patched vulnerabilities in both Firefox 3.6 and Firefox 6.
Five of the seven bugs fixed in Firefox 3.6.20 were rated "critical," the company's most serious threat rating; the two exceptions were tagged as "high."
Eight of the 10 bugs quashed in Firefox 6 were also rated critical, with two labeled high.
Because Mozilla now bundles virtually all security patches with each version upgrade, users stuck on Firefox 4 are now running a browser vulnerable to 20 different bugs.
According to Web metrics vendor Net Applications, about 9% of the people using Firefox as of the end of July were running Firefox 4.
One of the critical vulnerabilities patched today was in Firefox's implementation of WebGL, a 3-D rendering standard that both Chrome and Firefox comply with. The bug was reported to Mozilla by a researcher with Context Information Security, a company that has cited serious security issues with WebGL.
Previously, Context recommended that users and administrators disable WebGL in Chrome and Firefox.
- IE6: Retired but not dead yet
- Chrome users won't give up, keep pressing Google to restore old-style new tab page
- Google quashes 31 vulnerabilities, restores Metro mode 'steppers' with Chrome 34
- Firefox's UI face-lift on track for April debut
- Ex-Mozilla engineer blames Microsoft's rules for Metro Firefox's death
- Mozilla patches 20 Firefox flaws, plugs Pwn2Own holes
- Google reverses field, promises to restore Chrome's scrollbar arrows
- Update: Google ships Chrome 33, patches 28 bugs
- Mozilla's top exec defends in-Firefox ads, revenue search
- Mozilla taps in-Firefox ads as it searches for more revenue
- Gartner Magic Quadrant for Client Management Tools The client management tool market is maturing and evolving to adapt to consumerization, desktop virtualization, and an ongoing need to improve efficiency.
- Path Selection Infographic Path Selection Infographic
- Hyperconvergence Infographic A wide range of observers agree that data centers are now entering an era of "hyperconvergence" that will raise network traffic levels faster...
- Preparing Your Infrastructure for the Hyperconvergence Era From cloud computing and virtualization to mobility and unified communications, an array of innovative technologies is transforming today's data centers.
- Cloud Knowledge Vault Learn how your organization can benefit from the scalability, flexibility, and performance that the cloud offers through the short videos and other resources...
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users? All Desktop Apps White Papers | Webcasts