14 DAY TRIAL // Mozilla has released the stable build for Firefox 20 and besides some interesting new features, the latest version of the popular web browser also comes with some important security fixes.
Of the total of 11 vulnerabilities addressed in Firefox 20, three have been catalogued as being critical. These are miscellaneous memory safety hazards, a WebGL crash with the Mesa graphics driver on Linux, and a bypass of SOW protections, which allows the cloning of protected nodes.
The high-impact security holes are a cross-site scripting (XSS) using timed history navigations, a privilege escalation issue via Mozilla Updater, a privilege escalation flaw through Mozilla Maintenance Service, and an out-of-bounds write in the Cairo library.
The moderate-impact flaws include a memory corruption while rendering grayscale PNG images, a bypass of tab-modal dialog origin disclosure, and an out-of-bounds array read in CERT_DecodeCertPackage.
Firefox 20 for Windows is available for download here Firefox 20 for Mac is available for download here Firefox 20 for Linux is available for download here