Urgent Firefox Alert: Critical Memory Corruption Flaws (CVSS 9.8) Allow Remote Code Execution (securityonline.info)
from kid@sh.itjust.works to cybersecurity@sh.itjust.works on 12 Jun 14:01
https://sh.itjust.works/post/40006303

#cybersecurity

threaded - newest

Kyrgizion@lemmy.world on 12 Jun 14:40 next collapse

Are forks like Librewolf also affected? And have they been updated?

cypherpunks@lemmy.ml on 12 Jun 14:56 collapse

Are forks like Librewolf also affected?

Yes

And have they been updated?

Librewolf is in the process of updating; perhaps some distributions of it have released new binaries already but the flathub release is still 139.0.1. In git you can see they bumped the version to get 139.0.4 (the version with the fix) here, 18 hours ago; presumably flathub will get that in the near future.

cypherpunks@lemmy.ml on 12 Jun 15:09 next collapse

I guess an LLM wrote this:

All Firefox users—especially those on versions prior to 139.0.4—should:

  • Update immediately to version 139.0.4 via built-in browser update tools or Mozilla’s official download page.

🙄

sunzu2@thebrainbin.org on 12 Jun 15:23 next collapse

We need more pocket 🤡

OmegaLemmy@discuss.online on 12 Jun 16:38 next collapse

Cool!

Zoma@sh.itjust.works on 12 Jun 17:10 next collapse

good to know thanks

HubertManne@piefed.social on 12 Jun 17:44 collapse

im sorta glad im not working. I could just see coming in and security has disabled running firefox.