Mozilla launches Firefox 3.5.4, closes 16 vulnerabilities

By on October 28, 2009, 11:20 AM
Mozilla has just released a minor but still significant update to its popular Firefox web browser. Version 3.5.4 is essentially focused on security and stability improvements, closing a as much as 11 critical vulnerabilities among a total of 16. These include problems with third-party media libraries, the core and JavaScript engines, web worker calls, the GIF color map parser and the string-to-number converter.

Some of these problems could result in memory corruption under certain circumstances, Mozilla says, leaving room for hackers to create arbitrary code exploits. The company strongly recommends that all Firefox users upgrade to the latest releases. For those still running the 3.0.x branch however, they have correspondingly released Firefox 3.0.15, addressing nine different issues, including four critical ones.

As usual, users who have turned off automatic updates can use the “Check for Updates...” feature under Help or choose the appropriate OS below to download.

Download: Firefox 3.5.4 for Windows | Mac OS X | Other systems and languages

User Comments: 13

Got something to say? Post a comment
tonylukac said:

Keep the freebies coming, Mozilla! I really like the lack of activex. It really makes browsing safer.

mattfrompa mattfrompa said:

This is great, but I really just want to see 3.7 due to the Ribbon interface and jumplists

gamingmage said:

This is why you choose Google Chrome. While both have vulnerabilities google is overall the better web browser. The ONLY thing that firefox has that google doesn't (soon to change) is plug-in support and even then most people I know sacrifice that in a heart beat for the speed, memory use, and overall ease of use that Chrome has. That is all .

ken777 said:

I keep hoping that a new version of Firefox will cut memory usage/leaks, but this version doesn't seem to be the one. After a couple of hours of browsing, memory usage is still up to 800+MB with only a few tabs open.

kafaak said:

What I really need to see is version 3.6 which is said to be multi-touch supported. I really want to try that.

GACrabill said:

Thanks for keeping us aware of Firefox security fixes. I still think that it's a close call between Firefox and IE8 when it comes to useability, speed, and security.

lynxon said:

I'm just waiting for them to release the version with that Ribbon UI just so I can get it changed back to how it should be... With the Glasser mod!

Razerblade said:

Mozzilla are really good at getting lots of fixes out unlike other browser such as IE! Cant wait for 3.7 to be released, its gonna be awesome!

Rig said:

Quite allot of vulnerability's, glad it is getting patched though. and same here, I'm looking forward to future versions. The 3.7 ribbon should be good, for some reason I always liked the ribbon since I first used it in Office 2007.

elroacho72 said:

I like IE, whats the big deal about firefox. If firefox comes up with anything worth wild ,Microsoft will add it to IE. Firefox is like a beta tester for MS. HA HA

devit said:

It's a step forward as i just tested it. I guess Namoroka 3.6 alpha 1 is just this version of Firefox.But in most of the cases Namoroka 3.6 beats Firefox if you ask me. They should have made this build of Namoroka as a final 3.6 Firefox.

lesajm said:

Firefox is still necessary for some websites I visit but I prefer Google Chrome. I'm sure it won't be long till all sites are optimized to use Chrome and Google makes a few updates. Once that happens Firefox will just be another thing in my net past.


like IE, whats the big deal about firefox. If firefox comes up with anything worth wild ,Microsoft will add it to IE.

Load all comments...

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.