[German]Mozilla's developers have released versions 88.0.1 and 78.10.1 of the Firefox browser on 5.Mail 2021. It is a security update, which should eliminate vulnerabilities, but also fixes bugs.
Advertising
Firefox 88.0.1
According to the release notes, version 88.0.1 brings some bug fixes and security fixes. Here's a rough overview of what's new:
- Fixed an issue caused by a recent Widevine plugin update that prevented some purchased video content from playing correctly (bug 1705138)
- Fixed corruption when playing videos on Twitter or WebRTC calls on some Gen6 Intel graphics chipsets (bug 1708937)
- Menu lists in preferences were not readable for users with high contrast mode enabled (bug 1706496)
In addition, some critical vulnerabilities rated as high or moderate have been fixed in the new version.
- #CVE-2021-29953: Universal Cross-Site Scripting – a malicious web page could force a Firefox for Android user to execute attacker-controlled JavaScript in the context of another domain, resulting in a Universal Cross-Site Scripting vulnerability. No other operating systems were affected.
- #CVE-2021-29952: Race Condition in Web Render Components – when destroying web render components, a race condition could lead to undefined behavior. The developers suspect that this could be exploited with enough effort to execute arbitrary code.
Details can be read here.
Firefox 78.10.1 esr
An update to Firefox 78.10.1 esr has also been made available with one year of long-term support with the same vulnerabilities fixed. The new Firefox and the ESR variant can be downloaded from this web page (choose the variant from the list boxes shown).
