14 DAY TRIAL // A total of 14 security holes have been addressed by Mozilla with the release of Firefox 26. Five of the issues are considered critical since no user interaction is required in order to exploit them.
The critical vulnerabilities are use-after-free issues in synthetic mouse movement, during table editing and in event listeners. The list also includes a segmentation violation when replacing ordered list elements, and miscellaneous memory safety hazards.
The high-impact flaws are a JPEG information leak, and a bug that allows for GetElementIC typed array stubs to be generated outside observed typesets during JavaScript compilation.
Another high-impact fix is represented by the revocation of the digital certificate erroneously issued in early December by French government agency ANSSI.
In addition to these vulnerabilities, three moderate- and three low-impact flaws have also been patched. More details on the security holes are available on Mozilla’s security advisories page.
You can download Firefox for all platforms from Softpedia.