Mozilla fixes security hole with Firefox 3.6.3

The new browser version, released just over a week after Firefox 3.6.2, fixes another critical vulnerability in the open-source browser.

Firefox

Mozilla released Firefox 3.6.3 on Thursday to close a critical security hole.

The hole, a memory corruption flaw, could have let a remote attacker run arbitrary code on a person's computer. The problem doesn't affect Firefox 3.5 or other earlier versions, Mozilla said.

Mozilla released Firefox 3.6.2 just over a week earlier , also for security reasons.

Update at 7:12 a.m. PDT: The new vulnerability was disclosed at the CanSecWest conference in March, according to a message from Mozilla security team member Dan Veditz.

About the author

Stephen Shankland has been a reporter at CNET since 1998 and covers browsers, Web development, digital photography and new technology. In the past he has been CNET's beat reporter for Google, Yahoo, Linux, open-source software, servers and supercomputers. He has a soft spot in his heart for standards groups and I/O interfaces.

 

Join the discussion

Conversation powered by Livefyre

Show Comments Hide Comments
Latest Galleries from CNET
Tech industry's high-flying 2014
Uber's tumultuous ups and downs in 2014 (pictures)
The best and worst quotes of 2014 (pictures)
A roomy range from LG (pictures)
This plain GE range has all of the essentials (pictures)
Sony's 'Interview' heard 'round the world (pictures)