Mozilla Security Hole

Tuesday April 30th, 2002

Anonymous reports: "Grey Magic is reporting a minor security hole in Mozilla builds from at least 0.9.2 up to the current trunk and 1.0 branch. A bug has been filed in bugzilla, and will be opened to the public to view once the fix has been made. This also affects Netscape browsers from at least 6.1 on. There are no known uses of the vulnerability at this time." We'll let you know when a patch has been checked in for this.

On a side note, Grey Magic recommends that users "should move to a better performing, less buggy browser," on their vulnerability page. Looking at the open issues for it, IE clearly doesn't seem like the better choice.

UPDATE! A fix has been checked into the trunk, and has been approved for checkin to the 1.0 branch. Expect it to be in nightly builds for both branch and trunk starting tomorrow.

#52 How so?

by vondo

Wednesday May 1st, 2002 8:36 AM

You are replying to this message

I don't use IE a whole lot, mainly using Mozilla on Linux. But when I do use IE 6.0 on Windows, I don't recall having it crash. I don't recall ever seeing anything in the menu system that just plain doesn't work.

Overall, it just strikes me as a "smoother" experience. Less featured, maybe, but smoother.

As for faster, I can't stand the way mozilla takes ~1 second to finish after clicking the forward or back buttons. With IE and NN, these are (nearly) instantaneous.

Remember, I said you could "make a case that...," not that it is an absolute truth. There are a thousand ways to measure bugginess and stability and I'm sure mozilla wins under some fraction of those metrics.