Updates to Firefox and Mozilla Suite are now available for Windows, Mac OS X, and Linux.
This marks the third round of security fixes for Firefox, along with the seventh minor update to the 1.7 version of the Mozilla Suite.
Security issues fixed in these new versions are listed on the Known Vulnerabilities page with detailed descriptions of each issue:
- MFSA 2005-33 Javascript "lambda" replace exposes memory contents
- MFSA 2005-34 javascript: PLUGINSPAGE code execution
- MFSA 2005-35 Showing blocked javascript: popup uses wrong privilege context
- MFSA 2005-36 Cross-site scripting through global scope pollution
- MFSA 2005-37 Code execution through javascript: favicons
- MFSA 2005-38 Search plugin cross-site scripting
- MFSA 2005-39 Arbitrary code execution from Firefox sidebar panel II
- MFSA 2005-40 Missing Install object instance checks
- MFSA 2005-41 Privilege escalation via DOM property overrides
Source : adot's notblog* "firefox, cats, mars, and more": firefox 1.0.3 and mozilla 1.7.7