Security News
Mozilla and Google have already patched the critical Firefox and Chrome vulnerabilities exploited recently by white hat hackers at a competition in China. The flaw was fixed with the release of Firefox 82.0.3, Firefox ESR 78.4.1 and Thunderbird 78.4.2 just a couple of days after it was disclosed at the 2020 Tianfu Cup International PWN Contest, which took place over the past weekend in China.
Multiple software products from Adobe, Apple, Google, Microsoft, Mozilla, and Samsung were successfully pwned with previously unseen exploits in Tianfu Cup 2020, the third edition of the international cybersecurity contest held in the city of Chengdu, China. "Many mature and hard targets have been pwned on this year's contest," the event organizers said.
Mozilla today started rolling out Firefox 82.0.1, a new version that fixes a known bug where the Windows installer displays unnecessary reboot prompts on some systems after it finishes the installation. "This would affect anyone running a full installer[.], provided they have at least one other Firefox installation in a directory other than the one that they just installed into," Mozilla engineer Molly Howell explained on the company's bug tracker.
Mozilla has slowed the rollout of Firefox 82 just two days after its release due to printing bugs and crashes in the new version. Mozilla Firefox 82 was released on October 20th, with only a few improvements in performance and its Picture-in-Picture feature.
Mozilla has slowed the rollout of Firefox 82 just two days after its release due to printing bugs and crashes in the new version. Mozilla Firefox 82 was released on October 20th, with only a few improvements in performance and its Picture-in-Picture feature.
Mozilla released Firefox 81.0.2 today, October 13th, 2020, to the Stable desktop channel for Windows, macOS, Linux, and Android with a fix for a known issue preventing Twitter's website from loading. The issue affecting a large number of Firefox users caused the web browser to display blank pages or errors instead of loading Twitter pages on both desktop and mobile devices.
Mozilla published a support document with a quick fix for a widely reported known issue causing Twitter not to load on the Firefox web browser. According to a bug Mozilla has been tracking and working on fixing for the last 20 days, some users might see blank pages or errors when trying to visit the social network's website, with some reports also saying that the issue also affects mobile users.
Mozilla patched high-severity vulnerabilities with the release of Firefox 81 and Firefox ESR 78.3, including several that could be exploited to run arbitrary code. Firefox ESR is a Firefox version that's based on an official release for desktop, for use by organizations who need extended support for mass deployments.
A vulnerability in Firefox for Android paves the way for an attackers to launch websites on a victim's phone, with no user interaction. "Instead of providing the location of an XML file describing a UPnP device, an attacker can run a malicious SSDP server that responds with a specially crafted message pointing to an Android intent URI. Then, that intent will be invoked by the Firefox application itself."
A vulnerability identified in Firefox for Android could have been exploited to remotely open arbitrary websites on a targeted user's phone without the need to click on links, install malicious applications, or conduct man-in-the-middle attacks. The flaw was discovered by researcher Chris Moberly in version 68 of Firefox for Android.