Security News > 2020 > April > Mozilla Patches Two Firefox Vulnerabilities Exploited in Attacks
2020-04-06 08:46
Mozilla has released updates for its Firefox web browser to patch two critical use-after-free vulnerabilities that have been exploited in attacks.
Both flaws have been addressed with the release of Firefox 74.0.1 and Firefox ESR 68.6.1.
Mozilla has credited researchers Francisco Alonso and Javier Marcos for reporting the vulnerabilities.
The U.S. Cybersecurity and Infrastructure Security Agency has advised users to update Firefox as soon as possible.
This is not the first round of zero-days fixed by Mozilla this year in Firefox.
News URL
Related news
- Mozilla fixes Firefox zero-day actively exploited in attacks (source)
- Israel’s Pager Attacks and Supply Chain Vulnerabilities (source)
- Mozilla Faces Privacy Complaint for Enabling Tracking in Firefox Without User Consent (source)
- Mozilla accused of tracking users in Firefox without consent (source)
- CUPS vulnerabilities could be abused for DDoS attacks (source)
- Firefox Zero-Day Under Attack: Update Your Browser Immediately (source)
- Mozilla patches critical Firefox vuln that attackers are already exploiting (source)