MozillaZine

Mozilla Firefox 2.0.0.16 Released

Saturday July 19th, 2008

Mozilla Firefox 2.0.0.16 was released this week. The stability and security update to Firefox 2 fixes two security bugs, which are detailed in the Firefox 2.0.0.16 section of the Security Advisories for Firefox 2.0 page. Both are rated Critical, the highest of the four ratings.

One flaw is related to how Firefox handles command-line URLs to open multiple tabs and allows an attacker to open potentially malicious URLs in Firefox from another application. One variant of this attack exploits the widely-reported Safari carpet-bombing vulnerability but others also exist. Somewhat ironically, the exploit relies on Firefox not being open at the time of the attack.

The other vulnerability allows an attacker to crash and run arbitrary code on a victim's computer by overflowing a CSS object reference counter. The detailed bug reports for both issues are currently access-restricted to avoid assisting attackers but will be fully opened after users have had some time to install Firefox 2.0.0.16.

Although Firefox 3 was released in June and all users are encouraged to upgrade, Firefox 2 will be maintained with security and stability upgrades until mid-December 2008, according to the Mozilla Developer News weblog, which reported on the release of Firefox 2.0.0.16 on Tuesday. Version 2.0.0.16 is the second Firefox 2 update to be released since the launch of Firefox 3 and follows on from Firefox 2.0.0.15, which fixed twelve security issues.

Existing Firefox 2 users will be offered 2.0.0.16 via the browser's built-in software update feature if enabled. It can also be downloaded from the older Firefox releases page or the Firefox 2.0.0.16 directory on releases.mozilla.org, where it is available in over forty localizations for Windows, Mac OS X and Linux. The Firefox 2.0.0.16 Release Notes contain more general information about the upgrade.


#1 Please fix version 2.0.0.16.!!!!

by SibylleB

Thursday July 31st, 2008 8:53 PM

You are replying to this message

I do not appreciate this new version of Firefox. version2.0.0.16. is causing headaches. I am not able to connect to many sites such as ebay and flickr to name only 2 of the problem sites. Is it possible to go back to a previous version? I would be nice if the connection issue would be solved with this version. I am unable to upgrade to version 3 because I am using an old Mac Powerbook G3 with OS 10.3.9 and I cannot upgrade to a newer OS.

Please fix this! You have made things worse with your recent fixes! Please!