Firefox 2.0.0.1 is released with security fixes

Mozilla today released 2.0.0.1 version of Firefox. This was auto updated by version 2.0 on my PC. It is basically a collection of security fixes and enhanced support for Windows Vista. Interestingly on Windows Vista Firefox can not yet be set as the default browser! Check this bug for details.

The version number 2.0.0.1 looks funny though!

List of major security fixes in Firefox 2.0.0.1,

• XSS using outer window’s Function object
• RSS Feed-preview referrer leak
• Mozilla SVG Processing Remote Code Execution
• XSS by setting img.src to javascript: URI
• LiveConnect crash finalizing JS objects
• Privilege escallation using watch point
• CSS cursor image buffer overflow (Windows only)
• Crashes with evidence of memory corruption (rv:1.8.0.9/1.8.1.1)

For further info check out Mozilla Firefox 2.0.0.1 release notes.