Mozilla Foundation Security Advisories

Discussion in 'other security issues & news' started by ronjor, Nov 16, 2016.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  2. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  3. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
    October 23, 2018

     
  4. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  5. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  6. BRW85

    BRW85 Registered Member

    Joined:
    Dec 13, 2018
    Posts:
    2
    Location:
    near NYC
    Would appreciate having an opinion on just how concerned one should be about these reported 64/60.4 vulnerabilities, those marked as impact "high," and especially the one marked "critical." How likely are they to be exploited? Is it likely that they will remain proof-of-concept only?

    For any of these, as well as any earlier similar vulnerabilities noted with "Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code," and "potentially exploitable crash," has anything ever been seen in the wild?

    And finally, is NoScript, which I am running, and by which I pay attention to any dodgy scripts, likely to prevent any exploits which might develop out of these bugs?
     
  7. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
    Here's one. https://thehackernews.com/2016/11/firefox-tor-exploit.html

    If the coders are concerned about being exploited, that's good enough for me.
    Any software has bugs and bugs can be exploited by determined hackers.
    Seems to me, updating when updates are suggested, will eliminate a lot of worry.

    It is a great program and useful. Probably won't help against memory corruption though.
    However, keeping your software updated as needed is the way to go.

    Glossary of Terms
     
  8. BRW85

    BRW85 Registered Member

    Joined:
    Dec 13, 2018
    Posts:
    2
    Location:
    near NYC
    >>If the coders are concerned about being exploited, that's good enough for me.
    Any software has bugs and bugs can be exploited by determined hackers.
    Seems to me, updating when updates are suggested, will eliminate a lot of worry.


    Thanks, already updated for FF 60.4, but awaiting corresponding patches for Waterfox 56.2.5, which I prefer since it has retained all my XUL "legacy" addons. Basically, wanted to know whether I should temporarily switch to FF until patches arrive for WF--my perennial question whenever in this situation.

    Looks like switching to FF in the interim, which I usually do, not a bad idea.
     
    Last edited: Dec 13, 2018
  9. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  10. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
    Announced February 12, 2019
    Announced February 12, 2019
     
  11. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  12. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  13. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    22,492
  14. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  15. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    22,492
  16. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  17. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  18. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  19. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  20. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  21. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  22. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  23. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
    Mozilla Foundation Security Advisory 2019-24
     
  24. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
  25. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    82,239
    Location:
    Texas
Loading...
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.