Security News > 2022 > May > Firefox hits 100*, fixes bugs… but no new zero-days this month
At its current release rate of once every four weeks, Firefox has just over 23 years to go to equal Lara's quadruple century, and almost 30 years to reach 502*. No trouble at the version number mill.
Back in February 2022, a few mainstream sites didn't seem to realise that 100 was greater than 99, presumably because they were hard-coded to use only the first two characters of the version number, millennium bug style, thus turning the text 100 either into the number 10, or into the number zero.
We have't had any visible trouble with Edge, which is based on Chromium and flipped over from 99 to 100 at the start of April, and in the few hours that we've been on Firefox 100.0, we've had no problems either.
We're assuming either that the last few poorly-coded websites fixed their server-side code in the interim, or that the "Special case" lists of problem sites created in recent months by Google and Firefox have suppressed any problems, for example by allowing both browsers to pretend as needed still to be version 99.
The good news is that none of the security bugs patched in Firefox 100 is considered "Critical", and there aren't any zero-day holes on the list.
Memory safety bugs fixed in Firefox 100 and 91.9 ESR. As usual, the Mozilla coders openly admit that "We presume that with enough effort some of these [bugs] could have been exploited to run arbitrary code." In other words, this update is worth getting for this reason alone, given that exploits are much easier for attackers to figure out after they've been patched, because the changes in the code essentially act as hints about where to look, and what to look for.