Mozilla has released two new versions of its popular, cross-platform web browser, Firefox. Branches 3.5 and 3.0 have been updated with security fixes, stability tweaks, as well as new abilities and other enhancements. Mozilla Firefox versions 3.5.4 and 3.0.15 are immediately available for download right here, on Softpedia.

According to the release notes for Firefox version 3.5.4, Mozilla has been able to fix several security issues, most of which are labeled as “Critical” – the vulnerabilities can be used to run attacker code and install software, requiring no user interaction beyond normal browsing. Moderate vulnerabilities that would otherwise be High or Critical, except they only work in uncommon, non-default configurations (or require the user to perform complicated and/or unlikely steps), are also addressed in the 3.5.4 release. With the exception of a crash with recursive web-worker calls, all the issues listed below are addressed in both the 3.5 and 3.0 branches of Firefox for Mac OS X.

- MFSA 2009-64 Crashes with evidence of memory corruption (rv:1.9.1.4/ 1.9.0.15);
- MFSA 2009-63 Upgrade media libraries to fix memory safety bugs;
- MFSA 2009-62 Download filename spoofing with RTL override;
- MFSA 2009-61 Cross-origin data theft through document.getSelection();
- MFSA 2009-59 Heap buffer overflow in string to number conversion;
- MFSA 2009-57 Chrome privilege escalation in XPCVariant::VariantDataToJS();
- MFSA 2009-56 Heap buffer overflow in GIF color map parser;
- MFSA 2009-55 Crash in proxy auto-configuration regexp parsing;
- MFSA 2009-54 Crash with recursive web-worker calls;
- MFSA 2009-53 Local downloaded file tampering;
- MFSA 2009-52 Form history vulnerable to stealing.

Mozilla also claims to have added the ability to re-submit crash reports. Developers were also able to address an issue where, after using Clear Recent History, some SSL sites would not load all images and styles without pressing reload.

Download Mozilla Firefox for Mac (Free)