Mason83 wrote:
Hello,
FF has just pushed an emergency release fixing a critical vulnerability
(Advisory 2015-78).
https://blog.mozilla.org/security/2015/08/06/firefox-exploit-found-in-the-wild/
https://www.mozilla.org/en-US/security/advisories/mfsa2015-78/
The bugzilla entry is not yet public, so I can't see if they
give steps to reproduce, and test on SM. But I'm guessing SM
is vulnerable too :-(
https://bugzilla.mozilla.org/show_bug.cgi?id=1178058
I know the volunteers are working as hard as they can, but the
situation is near the breaking point. I count at least 15
critical vulns fixed since FF 36, vulns that probably affect
SM 2.33.1
https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox/
When is the next official release planned?
Should I grab a contrib build for a recent version?
Regards.
JS vulnerabilities in PDF's have been known for years.
Most people with any computer or internet knowledge would never turn
on JS in PDF. Many of us do not allow viewing PDF's
in a browser in the first place. We prefer to download then view.
_______________________________________________
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey
