The Mozilla team announced the release of Firefox 97.0.2, Firefox ESR 91.6.1, Firefox for Android 97.3.0, and Focus 97.3.0 fixing two critical zero-day vulnerabilities that are currently being exploited. It is caused by “use-after-free bugs that try to use previously cleared memory. When exploited, the bug can cause programs to crash and execute commands without permission.
Any command
The vulnerabilities are considered critical because they can allow a third party to execute a command, which can cause downloading malware to take over the device. The company stated that they were aware of these vulnerabilities being actively exploited in the wild, thus the company didn’t share detailed information about the methods that are being used.
The vulnerabilities were discovered and reported to Mozilla by Chinese cybersecurity company Qihoo 360 ATA. The company urged all users to apply the patch as soon as possible.
CVE-2022-26485: Removing an XSLT parameter during processing could have lead to an exploitable use-after-free. We have had reports of attacks in the wild abusing this flaw.
CVE-2022-26486: An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escape. We have had reports of attacks in the wild abusing this flaw.
FAQ
What is the latest version of Mozilla Firefox?
The latest version of Mozilla Firefox is Firefox 109 and it was released on 17 January 2023.
Is Firefox still used today?
Yes, Firefox is still widely used today. It is a popular web browser that is known for its speed, security, and privacy features. It continues to be a popular choice among users who value privacy and security when browsing the web.
Is Mozilla Firefox a Chinese company?
No, Mozilla Firefox is not a Chinese company. It is a free and open-source web browser developed and maintained by the Mozilla Foundation, a non-profit organization based in the United States.
Is Mozilla Firefox free?
Yes, Mozilla Firefox is a free and open-source web browser. It is available for Windows, macOS, and Linux operating systems and can be downloaded from the official Mozilla website. Firefox is free to use, download, and distribute, and it is supported by a community of developers and users who contribute to its development and maintenance.
What are the system requirements for running Mozilla Firefox?
For Windows
- Windows 7 or later
- Pentium 4 or newer processor that supports SSE2
- 512MB of RAM / 2GB of RAM for the 64-bit version
- 200MB of hard drive space
- macOS 10.12 or later
- Mac computer with an Intel x86 or Apple silicon processor
- 512 MB of RAM
- 200 MB hard drive space
- Firefox will not run at all without the following libraries or packages:
- glibc 2.17 or higher
- GTK+ 3.14 or higher
- libstdc++ 4.8.1 or higher
- X.Org 1.0 or higher (1.7 or higher is recommended)
- For optimal functionality, we recommend the following libraries or packages:
- DBus 1.0 or higher
- GNOME 2.16 or higher
- libxtst 1.2.3 or higher
- NetworkManager 0.7 or higher
- PulseAudio