2009-06-12

Fixed in Firefox 3.0.11

Firefox 3 釋出功能與安全性更新版。

Release Date:
June 11, 2009
Security Update:
  • MFSA 2009-32 JavaScript chrome privilege escalation
  • MFSA 2009-31 XUL scripts bypass content-policy checks
  • MFSA 2009-30 Incorrect principal set for file: resources loaded via location bar
  • MFSA 2009-29 Arbitrary code execution using event listeners attached to an element whose owner document is null
  • MFSA 2009-28 Race condition while accessing the private data of a NPObject JS wrapper class object
  • MFSA 2009-27 SSL tampering via non-200 responses to proxy CONNECT requests
  • MFSA 2009-26 Arbitrary domain cookie access by local file: resources
  • MFSA 2009-25 URL spoofing with invalid unicode characters
  • MFSA 2009-24 Crashes with evidence of memory corruption (rv:1.9.0.11)
Several issues were reported with the internal database, SQLite, which have now been fixed by upgrading to a newer version.
Fixed an issue where, in some specific cases, the bookmarks database would become corrupt. (bug 464486)

0 意見: