Security News > 2020 > May > Firefox 76.0 released with critical security patches – update now
Firefox just published its latest now-every-fourth-Tuesday release, bringing numerous security fixes, including three denoted critical.
CVE-2020-12395: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8.
There's a separate entry, CVE-2020-12395, flagged high rather than critical, covering five bugs that were found in Firefox 75 but not in 68.7 Extended Support Release, reminding us all that new features sometimes do bring new bugs.
If not, the update will be fetched for you and you'll prompted to update - restarting Firefox will automatically apply the update and reload the new version.
If you're a Linux or xBSD user with a Firefox build that is provided by your distro, you'll need to check back with your own distro's update servers to find and fetch any available Firefox fixes.
News URL
Related news
- Two simple give-me-control security bugs found in Optigo network switches used in critical manufacturing (source)
- CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches (source)
- Mozilla patches critical Firefox vuln that attackers are already exploiting (source)
- HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities (source)
- Major security audit of critical FreeBSD components now available (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-26 | CVE-2020-12395 | Out-of-bounds Write vulnerability in multiple products Mozilla developers and community members reported memory safety bugs present in Firefox 75 and Firefox ESR 68.7. | 9.8 |