Administrator Tarun Posted April 17, 2008 Administrator Posted April 17, 2008 (edited) While there is no evidence of an exploit as of yet, Mozilla is taking a proactive measure to fix the issue before it could be.A problem with stability which resulted in crashes and evidence of memory corruption was remedied in Firefox 2.0.0.13, however apparently the fix did not completely close any holes. In fact, it seems as if it introduced new stability issues, where crashes occurred during JavaScript garbage collection. That feature allows a developer to reclaim the memory occupied by strings, objects, arrays, and functions that are no longer in use. "We have no demonstration that this particular crash is exploitable but are issuing this advisory because some crashes of this type have been shown to be exploitable in the past," Mozilla said in an advisory. Thunderbird is also affected, however JavaScript needs to be enabled. By default, this is not, and Mozilla said it discourages users from running scripts within mail. JavaScript garbage collection problems have cropped up in the past. In February 2006, Mozilla addressed several issues within Firefox 1.5 which also posed a memory corruption and arbitrary code risks. Source: BetaNews Link: Lunarsoft Frontpage Edited April 18, 2008 by Tarun Updated title - Thanks greenknight! Quote
greenknight Posted April 18, 2008 Posted April 18, 2008 That headline is not quite right (or, actually, is outdated): the latest update, 2.0.0.14, fixed the crash that was introduced in 2.0.0.13. BetaNews has updated their article to reflect this, suggest you do the same here. Quote
Administrator Tarun Posted April 18, 2008 Author Administrator Posted April 18, 2008 Fixed. Thanks greenknight! :hmm: Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.