Reply to post: ? Critical Security Bug in 72.0 ?

Firefox 72: Floating videos, blocking fingerprints, and defeating notification pop-ups

W.S.Gosset Silver badge
Pirate

? Critical Security Bug in 72.0 ?

Heads-up, all. I just saw these:

https://appleinsider.com/articles/20/01/10/update-firefox-now-because-the-department-of-homeland-security-says-so

https://www.fastcompany.com/90450626/firefox-attacks-homeland-security-urges-mac-users-to-update-browsers-immediately-in-rare-warning

"The issue is this: Firefox versions for desktop older than the just-patched version contain a critical vulnerability that could allow an attacker to take control of a user’s entire operating system—whether they use Windows or Mac. More alarming, the vulnerability is already being exploited in the wild, thus Homeland Security stepping in with the urgent plea for users to upgrade."

Per DHS:

" Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. An attacker could exploit this vulnerability to take control of an affected system. This vulnerability was detected in exploits in the wild.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Mozilla Security Advisory for Firefox 72.0.1 and Firefox ESR 68.4.1 and apply the necessary updates."

Safe versions are apparently Firefox 72.0.1 and Firefox ESR 68.4.1

Mozilla's own advisory here.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020