Mozila Firefox 3.6

Choose it! Use it! Love it!


« Firefox 3.6 released January 21st, 2010Firefox 3.6.3 released April 1st, 2010. »

Firefox 3.6.2 released March 22nd, 2010.

Firefox 3.6.2 fixes the following issues found in previous versions of Firefox 3.6:
WOFF heap corruption due to integer overflow
     Proof of conceptEvgeny L. from Vulndisco reported a crash due to a buffer overflow in our WOFFparser.  I am able to reproduce the crash, but the stack I get doesn't appearto be in font parser code.  I'll try it in a debug build shortly to see if itlooks any different.  Here's the crash report where it looks like we're callingnull:0bc35855-ee77-4c61-b469-c7c482100313To reproduce, run the attached python script ff1.py and loadhttp://localhost:8080/1.html

Download the latest mozilla firefox right now.

Tags: firefox 3.6  release  
Publish:mozila | Category:Notes

Post comment:

◎welcome to give out your point。

Powered By Z-Blog 1.8 Walle Build 91204

Copyright Mozila. Some Rights Reserved. Mozila Firefox is here.